Windows 10: Reoccuring pcds32.exe trojan Solved

  1.    16 Feb 2016 #1

    Reoccuring pcds32.exe trojan

    I've been getting a lot of notifications from bitdefender that i have viruses named: pcds32.exe, pcds64.exe, and rv32.exe. Bitdefender usually finds it in my temp folder and it'll keep disinfecting it and blocking it and I've manually deleted it as well but it keeps coming back. It's also appeared in my local appdata in a folder named unmedia which i don't recognize. What can i do to get rid of it permanently? I'm using windows 10 64 bit.
    Thanks in advance.
      My ComputerSystem Spec

  2. Night Hawk's Avatar
    Posts : 3,361
    W10 Pro x64/W7 Ultimate x64 dual boot main - W10 Pro Insider Preview/W7 Pro x64 - remote pc
       16 Feb 2016 #2

    Hello deepfrybanana Welcome to the Ten Forums!

    Funny I was recently chatting with a former Symantec security analyst who was pointing at the free version of BitDefender as being a preferred av program! However the support for the software used here found to be one of the top choices sees a highly specialized bug removal tool available at their support site you should find effective. Customer Support Help Center | VIPRE Antivirus

    Some more detailed and generalized information about the trojan dropper you ended up with there can be looked over at Best Methods to Remove Pcds32.exe-Malware Removal Guides | Blogines I wouldn't rave about RegCure Pro or SpyHunter however while the VIPRE Rescue tool is known to be effective. The bugs you have there are very much similar to a scam ware removed a few years back off a laptop where a bogus "Windows Process Doctor" prevented ending the processes for the scamware by tying up the Task manager! Once booted in safe mode after locating the main bug under a user account sub folder that file was removed allowing the av software to locate and remove the rest which included four fake trojans that did nothing as part of the gimic.

    When later speaking with someone at GFI I was asked if I had tried the Rescue tool where I replied back with a no since I had already manually tracked things down and saw the regular av program do the rest. That went over like a lead balloon there!
      My ComputerSystem Spec

  3.    16 Feb 2016 #3

    So I downloaded the Viper rescue tool and then booted into safe mode and ran it. I didn't run it from my USB though like they instructed me to because when i tried moving it to my USB it said it can't copy it's properties or something so i just ran it from my desktop. The tool didn't find pcds32 or the other trojans i talked about but it found a bunch of other viruses though a lot of them were false positives. I guess i'll mark it as solved for now. Thank you for the help!
      My ComputerSystem Spec

  4. Night Hawk's Avatar
    Posts : 3,361
    W10 Pro x64/W7 Ultimate x64 dual boot main - W10 Pro Insider Preview/W7 Pro x64 - remote pc
       16 Feb 2016 #4

    I haven't had any opportunity to run this latest tool you tried there. The laptop I cleaned up manually was an old Vista laptop back in 2011 I was asked to look at and there was another tool at the time that would likely have found the culprit for you.

    Those false positives however are likely bogus reg entries or simply other less but still annoying bugs that got downloaded by the trojan dropper you seem to have. Generally once you locate and remove the culprit being the source for the rest you shouldn't have any more problems. It's just sometimes you are better off hunting manually for them in places like the users folder as well as trying out different bug scanners if not having the best av program going! Having an av program with web filtering tends to see buggy as well as some not buggy web sites blocked when the filtering may get a little overprotective. But you are far less likely to get stung Big Time!
      My ComputerSystem Spec


Related Threads
.ecc Extension: Trojan ? Can't Seem To Delete Them ? Help please in AntiVirus, Firewalls and System Security
Hello, I received an eMail from a friend who said that any file with an .ecc extension is one of those Crypto ransom ware trojans. True ? My old PC7 PC was wiped out, literally, a few months ago, so I am literally paranoid about this.
Solved Trojan Detected in OneDrive in AntiVirus, Firewalls and System Security
The odd thing is I don't even use OneDrive except to automatically upload photos from my Android phone to my desktop; nothing has been detected on the phone. I've run another full scan with Bitdefender and Malwarebytes Anti-Malware (free) without...
Trojan in My Registry in AntiVirus, Firewalls and System Security
I have an older 15 inch HP with W10 that I recently updated. I have always had McAfee on the computer, it has never lapsed. I have also run Spybot, Malwarebytes, Google Ghostery and ABP Adblock Popup. When I recently bought a new printer...
I have a backdoor Trojan (malware) in AntiVirus, Firewalls and System Security
I have a backdoor Trojan (malware) on my computer and I couldn't be bothered to reformat my PC until the opportunity was given to me in windows 10. I still want to keep my PC but I want the malware to be completely gone, so in my situation would...
Solved Trojan removed by Defender in AntiVirus, Firewalls and System Security
With the last couple of builds it seems that Defender is always finding stuff to remove every time I start Windows 10. This morning I removed Trojan Win32/GHEUGENT.Alplock after Defender quarantined it and marked it severe. Right now I am running...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 16:28.
Find Us