I'm in the IT business, and I've removed a lot of viruses over the years, but this one has me stumped.
I have run Kaspersky virus removal tool from boot up and removed 52 Trojans off my clients PC. I then booted into Safe Mode and ran Malwarebytes Anti-Malware and removed another 9 malicious items as well as a large number of non-malware items. Running them again came up with nothing so I restarted my clients computer and found that the COM Surrogate process is still running in the background and when connected to the internet it multiplies and takes over. If Internet is disconnected it shrinks back down till there are only one or two processes running.
I created a new profile and logged into it to see if the COM Surrogate process would show up there but it doesn't. It is limited to the primary profile.
In the time it took me to write this post, the processes went from 3 in the attached picture to 15 processes. Help would be much appreciated.
Edit: Ran RKill to see if it would see malicious activity running in the background and it found nothing. Document attached.
I have run Kaspersky virus removal tool from boot up and removed 52 Trojans off my clients PC. I then booted into Safe Mode and ran Malwarebytes Anti-Malware and removed another 9 malicious items as well as a large number of non-malware items. Running them again came up with nothing so I restarted my clients computer and found that the COM Surrogate process is still running in the background and when connected to the internet it multiplies and takes over. If Internet is disconnected it shrinks back down till there are only one or two processes running.
I created a new profile and logged into it to see if the COM Surrogate process would show up there but it doesn't. It is limited to the primary profile.
In the time it took me to write this post, the processes went from 3 in the attached picture to 15 processes. Help would be much appreciated.
Edit: Ran RKill to see if it would see malicious activity running in the background and it found nothing. Document attached.
Attachments
Last edited:
You need to post your problem here and attach the files 
