services.exe

L

live cross wire

microsoft antispyware alert me about services.exe could be
a trojan but its a system file as windows xp pro will not
remove the file? it says it's a system file

Microsoft AntiSpyware has detected a possible Windows
Directory Trojan.

Name: Microsoft Services and Controller app
Description: Services and Controller app
Publisher: Microsoft Corporation
File name: services.exe
Path: C:\WINDOWS\services.exe

A common technique that spyware, adwares, viruses,
keyloggers etc use to hide from users is to drop files on
the system that use the same name as a legitimate file but
in a different folder.

Advise: You might want to analyse this file to verify it
is something that you really want on your system. Do not
delete this file unless you are 100% sure it is a threat.

So How can I feel that I can remove the file? Plus find a
way to replace the file ?
 
B

Bill Sanderson

This is a bad file.

If you do a search of your system for services.exe you will find that you
have one in \Windows and another in \Windows\system32.

The one in system32 is the genuine system file.

Restart your system in safe mode and do full deep scans with Microsoft
antispyware until a scan comes through clean. Allow Microsoft antispyware
to remove or quarantine this threat. If you are in doubt, choose
quarantine.

The difficulty you are having removing the file is not because it is a
system file, but because it is active (i.e. running in memory, doing Bad
Things) at the time you are trying to remove it. One of the attributes of
safe mode is that very few third-party services are run at startup--that
should allow removal of this file.
 
M

mbacarra

Joined
May 29, 2006
Messages
2
Reaction score
0
maybe this thread has been created long ago, but i'm currently experiencing the same problem as that of the poster of this thread. i just want to comment on the reply of the person above, saying that windows should be run on safe mode then should the microsoft antispyware be run... i've tried that but it didn't work. i've also disabled the system restore as adviced in antispyware websites and ran a full system scan using all of my antispyware and antivirus but still to no avail. right now, i'm hanging on the strength of microsoft antispyware to block the application from running, but i still need a true cure to this problem.

please help! i really need help on this one! i joined this forum in my desperation to find some answers on this problem...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Why would services.msc & services.exe be "Access Denied" in WinXP? 17
New signature from my computer, but not able to send it to MS 0
Can't eradicate trojan 25
Wrong trojan detection (BoeBot.Explorer) 5
Trojan.Downloader.AdMSI -- False Positive ? 3
Warez P2P virus 5
Windows Registry error message upon start up 3
services.exe has disappeared 1

Top