Sign in with
Sign up | Sign in
Your question

SVCHOST.EXE is hacked ????

Tags:
  • Security
  • Svchost.Exe
  • Hacked
  • Apps
Last response: in Antivirus / Security / Privacy
Share
May 26, 2010 5:07:23 AM

I am not sure if this is correct forum and if not kindly move me.

Please help I am under some kind of attack and I didn't know for months ....... please I really don't know what is it but note time it's like every another second .... please ho do I make it stop. Also I checked program to looks at all programs that currently using some network connections ... some of this IPs I see in there iwht program name ....unknown ,,,,

Please help

More about : svchost exe hacked

May 27, 2010 6:24:51 AM

Thank you for this software I just installed it and did scan nothing showed up. However this is scaring me I reinstalled BRAND new Windows 7 with Clean install with clean format of the drive. I installed only Drivers, system software AVG and some utilities. I checked AVG it was all fine no logs .....and just now I checked logs again. Just looks at time ....7 something per second ... and it's OUTBOUND ...what a hell is going on people I am cursed or what. Windows is clean all software are legit too including AVG ...please help I am losing hope in Windows ...(Ubuntu ?)

m
0
l
Related resources
May 27, 2010 6:26:14 AM

P.S.

Also look at all this IPs .....what a hell I am trying to send and ,,,,,damn I am just shocked to see this on brand new installation .... I did all scans nothing found ...please any Security Specialist can provide an advice because over 15 years in computer business I never saw anything like this.

Thank you guys. For new I"ll be using Ubuntu till I can be sure that windows is clean.
m
0
l
May 27, 2010 2:18:09 PM

I am unable to zoom the image to get a look at it. I would first have go and do some research anyway as there is a malware that looks remarkably like svchost.exe, although with a reformat and reinstallation it should have been removed. I don't know if this will work or not: Try Right clicking on the ip address and then copy. go to www.ipchecking.com. In the box paste the ipaddress and then click. It should tell you who or what is on the other end.
m
0
l
May 27, 2010 2:39:52 PM

All IPs are like totally random. Also sometimes I see ip like 192.168.1.101 ..... I am really clueless. Also like I said before this is clean windows install on formatted drive with almost nothing installed but drivers and AVG. Here is image link to look at: http://i386.photobucket.com/albums/oo309/divxclub/help2...
m
0
l
June 11, 2010 10:30:57 AM

I'd suggest you run the system file checker (sfc.exe), which is supposed to check if the system files have been modified, and replace them if that's the case by their original versions.
You just have to type sfc /scannow in a command prompt or in the "Run..." dialog box.
That will ensure you have the correct svchost file.
I'd also advise you run a full system scan with maximum settings, in order to be sure there's no malware on your computer.

m
0
l
!