I have scanned in and out of safemode with symantec endpoint protection (unmanaged)and malwarebytes.
I have deleted temp files in user folders and in browsers.
I would like to know how to deal with this issue. I think it keeps deleteing and coming back somehow through cache or temp files and im unsure how to proceed.
the trojan bit doesnt seem to be in the traffic log but the svchost is listed numerous times.