A0010310.exe
A0012298.dll
A0013298.dll
A0013306.dll
A0013308.exe~(all of the A00 are located in the System Volume Information\ restore folder and say its infected Win32 root-kit gen)
iefka.exe (Win32 Fasec)
iehelper.dll(Win32 Fasec)
I want to know what to go with those files, should I deleate them or what. Also my pc is freeking slow. svchost.exe keeps hogging off the cpu speed and makes spike all they UP to 100%. Someone help me out here >:( >:( >:( >:(.
There is no rush to delete anything from the chest, a protected area where it can do no harm. Anything that you send to the chest you should leave there for a few weeks. If after that time you have suffered no adverse effects from moving these to the chest, scan them again (inside the chest) and if they are still detected as viruses, delete them.
The SVCHOST is a host for services that don’t run as their own service, hence the SVC (service) Host.exe file name. So it isn’t so much the svchost that is at fault but something that is using it. Finding out what is the question.
USEFUL - Find out what is using the SVCHOST Service.
Windows Start, Run, type (or copy and paste) “cmd.exe /k tasklist /svc > c:\tasklist.txt” without the quotes - this opens a command window and runs the tasklist for services, the > c:\tasklist.txt outputs the results to the file and location given:
svchost.exe 1020 DcomLaunch, TermService
svchost.exe 1080 RpcSs
svchost.exe 1108 AudioSrv, BITS, CryptSvc, dmserver,
EventSystem, helpsvc, HidServ, Netman, Nla,
RasMan, Schedule, SENS, SharedAccess,
ShellHWDetection, TapiSrv, Themes, winmgmt,
wscsvc, wuauserv
From this if you make a note of which svchost.exe, PID (Process Identifier) number which is responsible for the 100% CPU and inside the results for that PID number you will see lots of different running elements, it would be one of those. Finding it is not easy.
Post the results of the svchost.exe causing the problem.
In addition to DavidR’s post, you can also try Process Explorer to find out what program is using what exact process.
http://technet.microsoft.com/en-us/sysinternals/bb896653.aspx
I only recommend it for experienced users though, however I don’t know your skill level.
It will allow you to find exactly what program is calling what process.