Jump to content

possible malware. please help.(DCOM, gupdate)


Recommended Posts

hi, first i wanna say sorry if this is the wrong forum, i just need to figure this out and could think of noplace else. :P

anyways, i was watching a youtube video, and something popped up, and then dissapeared in under a second, the only word i could catch was "update". it was an orange window.

so i ran a malwarebytes quick scan(which found nothing), and am currently running a full scan.

i found the following logs in my event viewer from around the time the window popped up.

"DCOM started the service gupdate with arguments "/comsvc" in order to run the server:

{4EB61BAC-A3B6-4760-9581-655041EF4D69}": 1:38:00am

"The Google Update Service (gupdate) service entered the running state."1:38:00am

"The Google Update Service (gupdate) service entered the stopped state."1:38:01am

those are from the system folder,

and then under the Applications folder i found these:

"The description for Event ID 0 from source gupdate cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.

If the event originated on another computer, the display information had to be saved with the event.

The following information was included with the event:

Service started"1:38:00am

"The description for Event ID 0 from source gupdate cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.

If the event originated on another computer, the display information had to be saved with the event.

The following information was included with the event:

Service stopped"1:38:01am

im not sure if this is malware, or something else.

all i know is that i didnt start it, and ive never seen it before.

does anybody know what it is/what it could be?

much thanks in advance.

Link to post
Share on other sites

sorry for the extra post, but i wanted to add that the only google programs i have on my computer are google talk plugin, and google toolbar for internet explorer.

and im running windows vista home premium service pack 1, and as far as the windows updater tells me, my software is up to date.

Link to post
Share on other sites

UPDATE(if anybody cares to read.): the full malware bytes scan found nothing, but after a ful microsoft security essentials scan, i found a VirTool:Js/Obfuscator.bn in my moms user account, in one of the temporary internet file folders. ive removed it, and ran a second mse scan to be safe, and nothing was found. im running another malwarebytes scan before i get off the computer to be double safe. lol.

if anyone reads this, do you have any other suggestions?

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Please update MBAM, run a Quick Scan, and post its log.

Next, download DDS by sUBs and save it to your Desktop.

Double-click on the DDS icon and let the scan run. When it has run two logs will be produced, please post only DDS.txt directly into your reply.

Link to post
Share on other sites

  • 1 month later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.