New User? Need help? Click here to register for free! Registering removes the advertisements.

Computer Cops
image image image image image image image image
Donations
If you found this site helpful, please donate to help keep it online
Don't want to use PayPal? Try our physical address
image
Prime Choice
· Head Lines
· Advisories (All)
· Dnld of the Week!
· CCSP News Ltrs
· Find a Cure!

· Ian T's (AR 23)
· Marcia's (CO8)
· Bill G's (CO12)
· Paul's (AR 5)
· Robin's (AR 2)

· Ian T's Archive
· Marcia's Archive
· Bill G's Archive
· Paul's Archive
· Robin's Archive
image
Security Central
· Home
· Wireless
· Bookmarks
· CLSID
· Columbia
· Community
· Downloads
· Encyclopedia
· Feedback (send)
· Forums
· Gallery
· Giveaways
· HijackThis
· Journal
· Members List
· My Downloads
· PremChat
· Premium
· Private Messages
· Proxomitron
· Quizz
· RegChat
· Reviews
· Google Search
· Sections
· Software
· Statistics
· Stories Archive
· Submit News
· Surveys
· Top
· Topics
· Web Links
· Your Account
image
CCSP Toolkit
· Email Virus Scan
· UDP Port Scanner
· TCP Port Scanner
· Trojan TCP Scan
· Reveal Your IP
· Algorithms
· Whois
· nmap port scanner
· IPs Banned [?]
image
Survey
How much can you give to keep Computer Cops online?

$10 up to $25 per year?
$25 up to $50 per year?
$10 up to $25 per month?
$25 up to $50 per month?
More than $50 per year?
More than $50 per month?
One time only?
Other (please comment)



Results
Polls

Votes: 1133
Comments: 21
image
Translate
English German French
Italian Portuguese Spanish
Chinese Greek Russian
image
 Forum FAQForum FAQ   SearchSearch   UsergroupsUsergroups   ProfileProfile   Login to check your private messagesLogin to check your private messages   LoginLogin 

svchost.exe Backdoor trojan

 
Post new topic   Reply to topic       Computer Cops Forum Index -> General Symantec
View previous topic :: View next topic  
Author Message
Tomas2000

Cadet
Cadet



Joined: Apr 30, 2004
Posts: 2
Location: USA

PostPosted: Fri Apr 30, 2004 11:26 pm    Post subject: svchost.exe Backdoor trojan
Reply with quote

Hi-

Not sure if this is the appropriate venue, but here's my question-

I have Norton SystemWorks 2004, and I had an infection with the Gaobot worm that prevented me from using it. My IT adminstrator at work helped me rid myself of the worm, but I'm still having a problem with one remaining virus.

The NAV scan lists "svchost.exe" as a backdoor Trojan, and attempts to quarantine or delete it are met without success. In addition, I am unable to access the symantec website, despite the fact that my internet connection is working, and I can go to any other website that I like.

My brief and uneducated reading of the microsoft website made me think that I have the mydoom virus, but downloading and running their detection tool yielded no virus.

Any suggestions?

Thanks-
Tom
Back to top
View users profile Send private message
qwiyet1

Private
Private



Joined: Mar 12, 2004
Posts: 41
Location: USA

PostPosted: Sat May 01, 2004 2:28 pm    Post subject:
Reply with quote

When trying to run your NAV are you in "safe mode"? Try booting you pc in safe mode and running the NAV again - may allow you to remove it when run in safe mode.
Try connceting to other anti-virus sites that offer a free network based virus check - may not remove the virus (unless you purchase their product) but may help determine exactly which virus you have. I'm not aware of any other than Norton (sorry) but searching the forums here may point out a few.
Back to top
View users profile Send private message Visit posters website
qwiyet1

Private
Private



Joined: Mar 12, 2004
Posts: 41
Location: USA

PostPosted: Sat May 01, 2004 6:49 pm    Post subject:
Reply with quote

You probably can't reach the symantec website due to a BHO (Browser Helper Object) that won't let you get to it and will redirect you. I recently ran 'hijackthis' and removed several BHO's. One of which wouldn't allow me to connect to the sysinfo.org site - which tells you of known BHO's!
Back to top
View users profile Send private message Visit posters website
Display posts from previous:   
Post new topic   Reply to topic       Computer Cops Forum Index -> General Symantec All times are GMT - 5 Hours
Page 1 of 1

 
 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum


Powered by phpBB 2.0.8a © 2001 phpBB Group

Version 2.0.6 of PHP-Nuke Port by Tom Nitzschner © 2002 www.toms-home.com
Version 2.2 by Paul Laudanski © 2003-2004 Computer Cops