Jump to content

Search the Community

Showing results for tags 'svchost.exe'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

  1. Hello! First time I posted, so hopefully it is in the right forum. Currently on Malwarebytes Premium Version 4.0.4.49 Update package version 1.0.18998 Component package version 1.0.804 I keep getting back to back pop-ups from Malwarebytes. Is this a False Positive? If so, why does it not like my OneDrive all of a sudden? The po-ups are: Thank you!
  2. Hi. A few minutes ago I got a notification that malwarebytes had blocked svchost.exe trying to access a foreign website. My guess is that's not supposed to happen. This is the first time I have gotten that notification. I have tried a threat scan but it is not detecting svchost.exe as malware of a trojan or anything the like. I have included the .txt of the report. Thanks in advance malwareb.txt
  3. Hi all, I keep getting these popups that Malwarebytes have blocked a website - even when I don't have a browser running. I'm worried that I've got a virus or something, even though both Malwarebytes Premium and AdvCleaner is coming up clean. I have attached FRST and Addition logs, as well as the scan reports from premium and advcleaner, and a copy of the blocked website report. Thanks!
  4. Hello Everyone. I'm hacked with multiple hacking ways. A Malware infected to my Laptop with both svchost.exe and explorer.exe infection. I have deleted this for tenth times but its still downloading or creating itself. It was a hack tool for Point Blank (Its a online fps game). I downloaded it from www.sepok-cit.com . This site has too many good reviews and i believed them. Already I Tried a few ways to delte this sh*t from my computer but none of them worked. I TRIED: 1) Deleting its files (hidden files named as spoolsvc.exe , svchost.exe and explorer.exe) 2) Deleting it v
  5. Hello, I suspect that I have a bitcoin mining virus infecting my computer. Symptoms are as follows: 100% CPU until I open Task Manager, where it then disappears. Upon closing and reopening Task Manager, it does the same thing. High CPU usage is shown to come from System Interrupts. In Task Manager > Details, svchost.exe has 4 [four] entries under my username (I have read that typically they should only be under Network Service, Local Service, and System). In Task Manager > Details, I have 8 [eight] RuntimeBroker.exe (not sure if this is apart of the issue but felt it
  6. A few days ago I restarted my computer before a long time without re-starting it (like 1 week with the pc on) and I noticed that "Explorer.exe" was requesting to initialize, but the real explorer.exe task was already running... I said no but then I checked the directory of the file and the system said that the file was on %windir%/resources/themes, well going into folder to check if the file exists I noticed that theres nothing more than aero themes in this folder. So did a scan in the folder using malwarebytes and it recognized svchost.exe malware and explorer.exe, before adding they do quare
  7. I recently had gotten a lot of malware onto my PC. I cleared most of it using Malwarebytes, Hitman and other antivirus software. I however, still have some issues. svchost.exe now consumes more than 50% of my CPU usage and I get these notifications from Malwarebytes that I have attached to this post. I have heard that information from my PC could be getting leaked/stolen. Help would be much appreciated! Thank you.
  8. So ive got this issue where, everytime i open my league of legends client, its suddenly crash and detects the svchost.exe as a mawalre, even tho i delete it many times it just restore automatically. thanks in advance
  9. Receiving a constant stream of popups from Malwarebytes about a riskware website being blocked. There is no domain given, and it continues even if I am not accessing my browser. It is referencing System32\svchost.exe. This file also exists in SysWOW64 once and WinSxS twice. The IP address is 123.123.123.123. A malwarebytes scan does not find anything, and I've run adwcleaner. I've uploaded an export of one of the event logs, and I can upload whatever other log data is needed. Would like help in identifying if this is a stream of false positives, or if some other malicious file is c
  10. I found my problem quite similar to another question on the forum. A blank process in task manager made my computer in high CPU usage (up to 100%). I have used Malwarebytes and AdwCleaner, but neither of them were successful. Addition.txt FRST.txt Malwarebytes.txt
  11. Hello, I'm new to the forum, but already had Malwarebytes Premium (and thank God for that!). Here's my sad story. My Windows 7 Professional 64-bit computer had been connected to a LinkSys AC1200+ wireless router, which was connected to a 3com OfficeConnect hub/switch, which was connected via the uplink to a gateway provided by TimeWarner/Spectrum Business Class. But the other night, the hub/switch failed, and I couldn't get on the Internet. For a while, I connected the computer directly to the gateway, via one of its four ports on the back. (I reconfigured the computer's IP and DNS t
  12. Sometimes your program shows me the notification a connection is was blocked by it. The program spams the notification. If It starts, It would not stop for a period of some minutes. I have tried to look at your log files and detect the process what does this. Unfortunately, the program doesn't report process's Id, only the Process's file, which is, in my case, svchost.exe Please help me remove this spyware (I pretty sure it is a spyware). Thanks in Advance, Mizaro
  13. I had this issue 2 or 3 weeks ago. Malwarebytes constantly popups blocking a few different (what appears to be) adware issues, such as drivethelife and onclickads. There's a 3rd one that shows up sometimes but much more rarely. My Avast antivirus couldn't find any issues, and running a scan on my lifetime license MWB gives a message that there are no threats found. I have a temporary license on HitManPro and it seems to find tracking cookies but nothing to do with adware (from what I can tell). I uninstalled Malwarebytes and reinstalled it but lost my license key for about 10 days. During thi
  14. Hi, I recently downloaded some harmful software and after using Malwarebytes I removed the majority of it. I have already performed multiple Threat scans using Malware bytes, the first of them removing a large number of malware and other PUPs. However, on startup I get the CMD prompt popping up saying that it's trying to download something similar to the image below. Every 3 hours I got the CMD popping up again. Along with this, Malwarebytes consistently blocks (thankfully) an outward connection(using svchost.exe) as shown in the outward report log. I have attached
  15. Hello. Blocks this file C: \ Windows \ System32 \ svchost.exe Although I have it in the system and no. It turns out that the false alarm triggers. Malwarebytes www.malwarebytes.com -The data of the journal- Date of security event: 07.12.17 Protection Event Time: 10:53 Log file: 1d419714-db2c-11e7-b7e3-dc85de773e48.json Administrator: Yes -Information about PO- Version: 3.2.2.2029 Version of components: 1.0.212 Service pack version: 1.0.3431 License: Premium version -Information about the system- OS: Windows 10 (Build 10240.16384)
  16. Hello. Blocks this file C: \ Windows \ System32 \ svchost.exe Although I have it in the system and no. It turns out that the false alarm triggers. Malwarebytes www.malwarebytes.com -The data of the journal- Date of security event: 07.12.17 Protection Event Time: 10:53 Log file: 1d419714-db2c-11e7-b7e3-dc85de773e48.json Administrator: Yes -Information about PO- Version: 3.2.2.2029 Version of components: 1.0.212 Service pack version: 1.0.3431 License: Premium version -Information about the system- OS: Windows 10 (Build 10240.16384)
  17. I have been getting svchost.exe being blocked by MB for about a week or so, was on vacation so did not have time to deal with until now. Attached are the files from the scans as per the instructions. Please advise... FRST.txt Addition.txt MB Scan.txt
  18. I think MBAM just got me a false positive result.After a threat scan it found that the registry \HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run|Windows Update with data on C:\Users\wcwra\AppData\Local\Microsoft Windows|svchost.exe is a backdoor.bot,I went to the folder and it was empty,just a svchost.exe.config. backdoor.txt
  19. i'm pretty sure theres malware involved that my multiple anti virus scans havent picked up that is causing this, but i have run hitmanpro avast and malwarebytes scans numerous times, all have come up clear as i have deleted the ones that have appeared, Yet with malwarebytes i get a notification about once every 2 minutes about it blocking an outbound thing from sysWOW64/svchost.exe, then i check my logs it occurs about 2 times a minute. now i've seen other cases of thise and it has come to my attention to make my own separate post, as its individually based apparently, here ar
  20. Hi all, Keep getting the same notifcation on different servers multiple times per day. Alert Time: 10/03/2017 11:15:57 Server Hostname: SERVER Server IP: 192.168.0.254 Notification Catalog: Client Description: Malware threat detected, see details below: 10/03/2017 11:15:41 SERVER 192.168.0.254 Type: incoming, Port: 3389, Process: svchost.exe Blocked web site 37.139.50.3 10/03/2017 11:15:49 SERVER 192.168.0.254 Type: incoming, Port: 3389, Process: svchost.exe Blocked web site 37.139
  21. Hello! I have been experiencing an issue starting today: Bitdefender Total Security 2017 is blocking svchost.exe access to an apparently infected web resource. I am only getting this notification twice after Windows startup. I scanned my computer for malware using Malwarebytes, Bitdefender, Kaspersky TDSSKiller and Microsoft Anti-Malware package. I got the same result from all those scans: no infected files. I attached the logs and a screenshot of the notification. Malwarebytes.txt TDSSKiller.3.1.0.12_21.11.2016_22.14.15_log.txt
  22. Hi Everyone, Today, I just download Telerik Fiddler Web Debugger. To my surprise, I notice the process SVChost.exe seems to repeatedly request to connect to redirector gtv1.com or some sort. To my knowledge, I have scan the computer with Malwarebytes, the free version, together with Bitdefender. Both of them gave me clean results. Granted, those scans were 2 weeks ago, but in the two weeks I haven't even powered up the PC. So if it was a virus, I am sure I did not contract it in that time frame. Did the virus pass through both detection? Should I be worried? Thank you all.
  23. I got this notification last night. I ran Malwarebytes Premium and it didn't find anything, I also did a full scan with AV. I still have the feeling something is wrong. Detection, 8/29/2016 10:41 PM, SYSTEM, DESKTOP, Protection, Malicious Website Protection, IP, 95.79.255.41, 49473, Outbound, C:\Windows\System32\svchost.exe, Detection, 8/29/2016 10:41 PM, SYSTEM, DESKTOP, Protection, Malicious Website Protection, IP, 95.79.255.41, 49473, Outbound, C:\Windows\System32\svchost.exe, Detection, 8/29/2016 10:41 PM, SYSTEM, DESKTOP-, Protection, Malicious Website Protection, IP,
  24. For the past couple of weeks I keep getting a popup balloon come up that will state various IP addresses blocked with svchost.exe as the process. I am attaching the today and yesterday's Daily Protection logs to show what I am talking about. Can anyone help with this, as I am at a loss. I currently use MBAM Home Premium 2.2.1.1043 and my database is up-to-date. 080516 Daily Protection Log.txt 080616 Daily Protection Log.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.