"serivces.exe" process (how to remove ?)

The Incredible

Ambassador of Buzz
heyz!

i have an old desktop with winXP running on it. It got infected by some penDrive, and now if I press any key more than once in succession, it won't work.

e.g, if I press '2', it writes '2' but if I again press '2', nothing happens.

i opened task manager and found a process "serivces.exe", obviously I tried ending it, some other processes "net1", "CMD" reruns it.

next i found a file "serivces.exe" in C:\Windows\system32\
so, i ended the process and immediately shredded the file.

But the problem remains!

Any Solution ?
 
OP
The Incredible

The Incredible

Ambassador of Buzz
@arpanmukherjee

I already have AVG Anti-virus, but for some reasons I'm unable to update it. I guess if I try to install Kaspersky Trial Version, AVG's gonna create conflict.

Isn't there a removal tool ?

I don't think an Online Scanner will be able to remove the virus, it'll only detect.
 
Isn't there a removal tool ?

there may be, if u know the name of virus/worm. to find that out i suggested the online scanning

symantec IMO keeps updating its removal tool library

worms may prevent AV s/w like avira or AVG to update. also may slow internet speeds by diverting traffic
 

Vyom

The Power of x480
Staff member
Admin
Such viruses don't get removed easily. But I were in your place, I would have tried Norton Antivirus. It is most effective in cleaning threats easily. It's trial version would be more than useful.
Its better you make backup of your data from the OS partition, and clean re-install the XP.
 
OP
The Incredible

The Incredible

Ambassador of Buzz
I removed my AVG and ZoneAlarm, installed Kaspersky Trial and ran a full scan, it found another virus Win32/Heur, but perhaps it was unable to remove so I deleted the detected files by a shredder.

The problem persists. The same key doesn't works more than once when pressed repeatedly without switching to any other key.

Guys, I can't install each and every Anti-virus software one after another, it'll take days to scan and without any definiteness of error-removal. For instance I've already tried 2 very popular anti-virus software.

Please help! :(
 

Vyom

The Power of x480
Staff member
Admin
Believe me pal, you system is so screwed at this time, there is no point in even trying to correct it. Now you have two options:

1. Just move the useful files to another drive, and reinstall XP, formatting the current OS.

2. If you want to retain this OS only:
Dual boot, by installing XP on another drive. Then from the new XP, without navigating to other drives, download and install latest Antivirus (any, but with latest updates). Then do deep scan of all drives. In the end, go to original XP, and delete the XP which you installed from the drive.

If you are willing to do step 2, I may write proper steps for it.

All de best.
 

CA50

Cyborg Agent
@OP, you can't your already installed AV due to this virus, you can try installing Avast in the safe more and run a through boot time scan.

Alternately boot from some linux distro or windows XP live CD and manually find the executable and delete it, make sure you delete all the related files and registry datas as well, else it will regenerate itself.

After doing some googling, found this tool to remove service.exe virus
Unhack me

Reference Link
 

pulkitpopli2004

Cyborg Agent
Believe me pal, you system is so screwed at this time, there is no point in even trying to correct it. Now you have two options:

1. Just move the useful files to another drive, and reinstall XP, formatting the current OS.

i had to use the step 1 too... wasnt able to find any solution to this virus last tym..
 

gk2k

gkbhat.blogspot.com
If you can post your startup list i.e msconfig->StartUp with the full command list shown I can help you. If you want to remove the virus doing it manually is the way.
 
OP
The Incredible

The Incredible

Ambassador of Buzz
@gk2k

in what manner do you want me to post it ? you want a printscreen ?

i just checked the startup list and there a 'something' without a name, so obviously I disabled it. Still not working.

To be precise, if I give a gap of 2 seconds in between pressing the same key, it works.
 

Vyom

The Power of x480
Staff member
Admin
@CA50
it's "serivces.exe" not "services.exe"

Glad you cleared that, cause I was about to request the mods to change the name of thread, cause I thought OP has misspelled it :))

i had to use the step 1 too... wasnt able to find any solution to this virus last tym..

Just after re-installation you mustn't use any other drives, cause there can be viruses lurking in every nook and corner of the folders of other drives. First you need to download and update antivirus, then scan complete system. And then you can use other drives.
I repeat again, DOWNLOAD, not INSTALL FROM OTHER DRIVES!

@gk2k

in what manner do you want me to post it ? you want a printscreen ?

i just checked the startup list and there a 'something' without a name, so obviously I disabled it. Still not working.

To be precise, if I give a gap of 2 seconds in between pressing the same key, it works.

So, you are saying you still want to proceed with manual removal of the virus! :shock: You are one brave soul. :grin:
 

gk2k

gkbhat.blogspot.com
@incredible a screen shot if msconfig is difficult a ccleaner screen shot is better.
@vineet369:
I had this type of virus and have removed it manually. I have done it countless times for my friends.
Viruses and worms are nothing but programs that exploit the flaw in the design of the OS
 

Tech.Masti

Wise Old Owl
Try Malwarebyte, Superantispyware.... cloud antivirus like Panda cloud, hitman etc,.... All those are free....

Though i also thinks that format and reinstallation of os and then download of antivirus from net without using drive is the best idea....
 
Top Bottom