hijackthis
hijackthis copied to clipboard
dragokas
Message from WebRoot SecureAnywhere: "C:\windows\sysnative\svchost.exe" ; This file is not trusted and is trying to connect to the internet.
Yesterday WebRoot SecureAnywhere put a message on the screen reading: "C:\Windows\sysnative\svchost.exe : This file is not trusted and is trying to connect to the Internet."
Apparently this is a commonly used file to communicate with the Internet by both benign and malignant programs.
I did a thorough system scan with SUPERAntiSpyware Version 10.0.1274, Database Version 18753, which reported nothing other than tracking cookies in my browsers.
I then did a system scan with Webroot SecureAnywhere CE 25.2. It scanned fewer files but reported nothing.
I have been experimenting with Chinese microcontrollers (Sipeed M0Sense TinyML, Sipeed RV Debugger Plus, Sipeed Longan Nano) so I have downloaded a few unusual programs, including Xuantie C-Sky IDE, BLDevCube, and Serial Port Monitor. One that was reported as a virus as I downloaded it was GigaDevice GD32 All-In-One, but a forum convinced me it was a false positive...
I'm afraid I only have the HijackThis log beneath, as I unplugged the network cable from my computer, turned off all virus scanners and firewalls, did the HijackThis scan, turned on all virus scanners and firewalls, then continued with instructions. When I tried to run Autologger, it insisted that I turn off all the virus scanners again, so I am saving that for another day if truly necessary.
Thank you for any and all help. -BJL
Hi, If you need our assistance:
- Read carefully: How to make a request for help in the PC cure section
- Attach 'Collection-[Date].zip' log created by AutoLogger
Please, note that only members of VIRUSNET-Association are allowed to respond to PC cure topics. Ignore any recommendations given by other users, including PM !!!
Assistance is provided free of charge in our free time. If you found our help useful, you can thank us with any amount using this form or you can leave feedback in Guestbook.
Closed. Reason: no answer for 10 days. If you still need our help, please, execute the last steps, requested by a helper. Also, download again AutoLogger, prepare new CollectionLog, and write what problems remained.
