• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Help with virus removal?

Joined
Dec 2, 2005
Messages
704 (0.11/day)
Location
Chicago
System Name Woot
Processor AMD FX-9590
Motherboard ASUSTeK m5a99fxpro r2.0
Cooling Corsair H100i gtx
Memory 24GB G.SKILL PC3-12800
Video Card(s) MSI GTX 970GTX
Storage 2X 256GB SANDISK SSD 3X1TB MIXED HD
Display(s) 2x 32" Sony LCD
Case CoolerMaster Storm Trooper
Audio Device(s) 5.1 Surround Onboard
Power Supply Corsair 750W
Mouse Junk
Keyboard Junk
Software Windows 10 Pro x64
Benchmark Scores Anti-Gigabyte rig!
Ok, well my computer was running choppy so I looked in task manager what is wrong.. I have 400 running processes. Over a hundred of them are called conhost.exe, about 10 fah.exe, and another over a hundred of ftp.exe. Any idea what it could be? I used a couple programs like spybot to look for viruses but nothing..
 
Joined
Feb 20, 2008
Messages
4,628 (0.79/day)
Location
where everyone wants to be
System Name Everchanging
Processor AMD Ryzen 9 5900X
Motherboard ASUS ROG Crosshair Dark Hero
Cooling Arctic Cooling Liquid Freezer 2 420mm
Memory 2x16GB Corsair DDR4 3600 CL16
Video Card(s) eVGA RTX 3090 Ti FTW3
Storage Samsung 980 Pro 256GB, Samsung 980 Pro 2TB
Display(s) 2xSamsung 28" 4k HDR 144Hz
Case Fractal Meshify 2 XL
Audio Device(s) fiio K9 to Hifiman Sundara's via 4.4mm balanced cable
Power Supply Seasonic Prime TX 850w
Mouse Corsair Harpoon Wireless RGB
Keyboard Corsair K70 RGB PRO
Software Windows 11 x64
conhost.exe will open with some programs automatically, i think it helps the program work with windows, could be horribly wrong, but yes over 100 is odd, fah.exe i would think has to do with Folding@home, but if youre not running that, its odd. ftp.exe might be the bad program cause every ftp client or server i've run never used just ftp.exe. spybot is more for browser hacks and adware from web browsers. 2 good programs to try are combofix and malwarebytes anti-malware
 
Joined
Dec 2, 2005
Messages
704 (0.11/day)
Location
Chicago
System Name Woot
Processor AMD FX-9590
Motherboard ASUSTeK m5a99fxpro r2.0
Cooling Corsair H100i gtx
Memory 24GB G.SKILL PC3-12800
Video Card(s) MSI GTX 970GTX
Storage 2X 256GB SANDISK SSD 3X1TB MIXED HD
Display(s) 2x 32" Sony LCD
Case CoolerMaster Storm Trooper
Audio Device(s) 5.1 Surround Onboard
Power Supply Corsair 750W
Mouse Junk
Keyboard Junk
Software Windows 10 Pro x64
Benchmark Scores Anti-Gigabyte rig!
tried those too nothing helped. i installed process explorer. found out that folding@home bs (which i never recall installing) is somehow linked with ftp and conhost. seems like the problem is solved.. for now.
 
Joined
Jan 17, 2010
Messages
12,280 (2.37/day)
Location
Oregon
System Name Juliette // HTPC
Processor Intel i7 9700K // AMD Ryzen 5 5600G
Motherboard ASUS Prime Z390X-A // ASRock B550 ITX-AC
Cooling Noctua NH-U12 Black // Stock
Memory Corsair DDR4 3600 32gb //G.SKILL Trident Z Royal Series 16GB (2 x 8GB) 3600
Video Card(s) ASUS RTX4070 OC// GTX 1650
Storage Samsung 970 EVO NVMe 1Tb, Intel 665p Series M.2 2280 1TB // Samsung 1Tb SSD
Display(s) ASUS VP348QGL 34" Quad HD 3440 x 1440 // 55" LG 4K SK8000 Series
Case Seasonic SYNCRO Q7// Silverstone Granada GD05
Audio Device(s) Focusrite Scarlett 4i4 // HDMI to Samsung HW-R650 sound bar
Power Supply Seasonic SYNCRO 750 W // CORSAIR Vengeance 650M
Mouse Cooler Master MM710 53G
Keyboard Logitech 920-009300 G512 SE
Software Windows 10 Pro // Windows 10 Pro
Format! It the only way to be sure
 
Joined
Mar 19, 2012
Messages
377 (0.09/day)
Location
Rizal, Philippines
System Name Poor Man's Build
Processor Intel i7 3960X 4.9Ghz Sandy Bridge E
Motherboard MSi X79A-GD65 8D
Cooling XSPC 240mm and 360MM (External) Rad
Memory 64Gb Corsair Dominator Platinum
Video Card(s) EVGA GTX770 SC ACX SLI (non water cooled yet)
Storage Intel 520 240GB SSD x2 /x2 WD Caviar Black 3TB 7200RPM 64MB Cache
Display(s) ASUS 27" 2560X1440 x3
Case Corsair 900D (upgraded from my lvl 10 gt and 600T)
Audio Device(s) Asus Xonar Essence STX
Power Supply Corsair AX1200i 80PLUS Platinum
Software Windows 7 Ultimate (FPP)
lol i remember the time I had driver issues where I lost some files or something. took me 5 days trying to fix it to no end, lots of people here at tpu were trying to help too but a simple format which took me less than 2 min fixed it. if you got no way just format that slut ^_^
 
Joined
Mar 26, 2010
Messages
9,762 (1.91/day)
Location
Jakarta, Indonesia
System Name micropage7
Processor Intel Xeon X3470
Motherboard Gigabyte Technology Co. Ltd. P55A-UD3R (Socket 1156)
Cooling Enermax ETS-T40F
Memory Samsung 8.00GB Dual-Channel DDR3
Video Card(s) NVIDIA Quadro FX 1800
Storage V-GEN03AS18EU120GB, Seagate 2 x 1TB and Seagate 4TB
Display(s) Samsung 21 inch LCD Wide Screen
Case Icute Super 18
Audio Device(s) Auzentech X-Fi Forte
Power Supply Silverstone 600 Watt
Mouse Logitech G502
Keyboard Sades Excalibur + Taihao keycaps
Software Win 7 64-bit
Benchmark Scores Classified
if you have internet connection you could try online virus scanner, just google it and check
 

de.das.dude

Pro Indian Modder
Joined
Jun 13, 2010
Messages
8,757 (1.74/day)
Location
Stuck in a PC. halp.
System Name Monke | Work Thinkpad| Old Monke
Processor Ryzen 5600X | Ryzen 5500U | FX8320
Motherboard ASRock B550 Extreme4 | ? | Asrock 990FX Extreme 4
Cooling 240mm Rad | Not needed | hyper 212 EVO
Memory 2x16GB DDR4 3600 Corsair RGB | 16 GB DDR4 3600 | 16GB DDR3 1600
Video Card(s) Sapphire Pulse RX6700XT 12GB | Vega 8 | Sapphire Pulse RX580 8GB
Storage Samsung 980 nvme (Primary) | some samsung SSD
Display(s) Dell 2723DS | Some 14" 1080p 98%sRGB IPS | Dell 2240L
Case Ant Esports Tempered case | Thinkpad | Antec
Audio Device(s) Logitech Z333 | Jabra corpo stuff
Power Supply Corsair RM750e | not needed | Corsair GS 600
Mouse Logitech G400 | nipple
Keyboard Logitech G213 | stock kb is awesome | Logitech K230
VR HMD ;_;
Software Windows 10 Professional x3
Benchmark Scores There are no marks on my bench
tdss killer and malwarebytes.
 
Joined
Nov 12, 2013
Messages
74 (0.02/day)
If you will need malwarebytes and combofix regular virus programs can't even see rootkits, you have to use malwarebytes in safe mode and even sometimes you have to rename the mbam.exe file because rootkits are programmed to recognize it and disable it
 
Top