svchost.exe infected?

Toggle sidebar Toggle sidebar
G

Guest

Guest
Archived from groups: microsoft.public.windowsxp.basics (More info?)

Hello...first off thank you very much in advance, to everyone who replies
and/or tries to help out :)

Norton has been popping up its detected a virus... Backdoor.EggDrop

The file infected is svchost.exe, i know this is a system critical file,
which is why Norton doesnt have "access to the file" i'm assuming, so Norton
is useless. I've tried everything I can think of. My friend tells me to
delete svchost.exe, but i'm not sure that would be great for a critical file
😉

If anyone can help me out or anything here please let me know, this is kind
of my last restort 🙁

Thank you,
Joe
 
Archived from groups: microsoft.public.windowsxp.basics (More info?)

Hi,

Usually, svchost.exe is found in the \Windows\system32 directory. An
infecting version can often be found under \Windows\system32\wins (very
common way of hiding itself). You will need to restart in Safe mode to
delete it, as it will be active and tough to kill in normal mode.

--
Best of Luck,

Rick Rogers, aka "Nutcase" - Microsoft MVP
http://mvp.support.microsoft.com/
Associate Expert - WindowsXP Expert Zone
www.microsoft.com/windowsxp/expertzone
Windows help - www.rickrogers.org

"EnigmaZ" <EnigmaZ@discussions.microsoft.com> wrote in message
news:20B97594-1A47-4A94-81F2-DABA6B78F125@microsoft.com...
> Hello...first off thank you very much in advance, to everyone who replies
> and/or tries to help out :)
>
> Norton has been popping up its detected a virus... Backdoor.EggDrop
>
> The file infected is svchost.exe, i know this is a system critical file,
> which is why Norton doesnt have "access to the file" i'm assuming, so
> Norton
> is useless. I've tried everything I can think of. My friend tells me to
> delete svchost.exe, but i'm not sure that would be great for a critical
> file
> 😉
>
> If anyone can help me out or anything here please let me know, this is
> kind
> of my last restort 🙁
>
> Thank you,
> Joe
 
Archived from groups: microsoft.public.windowsxp.basics (More info?)

"EnigmaZ" <EnigmaZ@discussions.microsoft.com>'s wild
thoughts were released on Thu, 26 Aug 2004 18:57:04 -0700
bearing the following fruit:

>Hello...first off thank you very much in advance, to everyone who replies
>and/or tries to help out :)
>
>Norton has been popping up its detected a virus... Backdoor.EggDrop
>
>The file infected is svchost.exe, i know this is a system critical file,
>which is why Norton doesnt have "access to the file" i'm assuming, so Norton
>is useless. I've tried everything I can think of. My friend tells me to
>delete svchost.exe, but i'm not sure that would be great for a critical file
>😉
>
>If anyone can help me out or anything here please let me know, this is kind
>of my last restort 🙁
>

Have you ran any spyware detection programs?



Jan Hyde (VB MVP)

--
Vulcans always have a point and that is not just earsay. (Vlad Lenin)

[Abolish the TV License - http://www.tvlicensing.biz/]
 
Archived from groups: microsoft.public.windowsxp.basics (More info?)

check the file name again as a known virus uses a similar file name but is
actually called SCVHOST
not svchost which as you say is a major system file and if deleted may
cripple your machine.

Backdoor.Sdbot.N is a Trojan Horse that is similar to Backdoor.Sdbot. The
existence of the file Scvhost.exe is an indication of a possible infection.
http://securityresponse.symantec.com/avcenter/venc/data/backdoor.sdbot.n.html


"EnigmaZ" <EnigmaZ@discussions.microsoft.com> wrote in message
news:20B97594-1A47-4A94-81F2-DABA6B78F125@microsoft.com...
> Hello...first off thank you very much in advance, to everyone who replies
> and/or tries to help out :)
>
> Norton has been popping up its detected a virus... Backdoor.EggDrop
>
> The file infected is svchost.exe, i know this is a system critical file,
> which is why Norton doesnt have "access to the file" i'm assuming, so
> Norton
> is useless. I've tried everything I can think of. My friend tells me to
> delete svchost.exe, but i'm not sure that would be great for a critical
> file
> 😉
>
> If anyone can help me out or anything here please let me know, this is
> kind
> of my last restort 🙁
>
> Thank you,
> Joe
 
Archived from groups: microsoft.public.windowsxp.basics (More info?)

unfortanutely i'm 100% positive its svchost.exe 🙁

"Touch Base" wrote:

> check the file name again as a known virus uses a similar file name but is
> actually called SCVHOST
> not svchost which as you say is a major system file and if deleted may
> cripple your machine.
>
> Backdoor.Sdbot.N is a Trojan Horse that is similar to Backdoor.Sdbot. The
> existence of the file Scvhost.exe is an indication of a possible infection.
> http://securityresponse.symantec.com/avcenter/venc/data/backdoor.sdbot.n.html
>
>
> "EnigmaZ" <EnigmaZ@discussions.microsoft.com> wrote in message
> news:20B97594-1A47-4A94-81F2-DABA6B78F125@microsoft.com...
> > Hello...first off thank you very much in advance, to everyone who replies
> > and/or tries to help out :)
> >
> > Norton has been popping up its detected a virus... Backdoor.EggDrop
> >
> > The file infected is svchost.exe, i know this is a system critical file,
> > which is why Norton doesnt have "access to the file" i'm assuming, so
> > Norton
> > is useless. I've tried everything I can think of. My friend tells me to
> > delete svchost.exe, but i'm not sure that would be great for a critical
> > file
> > 😉
> >
> > If anyone can help me out or anything here please let me know, this is
> > kind
> > of my last restort 🙁
> >
> > Thank you,
> > Joe
>
>
>
 
Archived from groups: microsoft.public.windowsxp.basics (More info?)

check the location of the file.

SVCHOST is in the system32 folder, often a virus will put a file of the same
name in a different directory.

If it is located in another directory, you shouyld be able to boot into safe
mode and delete it

"EnigmaZ" wrote:

> unfortanutely i'm 100% positive its svchost.exe 🙁
>
> "Touch Base" wrote:
>
> > check the file name again as a known virus uses a similar file name but is
> > actually called SCVHOST
> > not svchost which as you say is a major system file and if deleted may
> > cripple your machine.
> >
> > Backdoor.Sdbot.N is a Trojan Horse that is similar to Backdoor.Sdbot. The
> > existence of the file Scvhost.exe is an indication of a possible infection.
> > http://securityresponse.symantec.com/avcenter/venc/data/backdoor.sdbot.n.html
> >
> >
> > "EnigmaZ" <EnigmaZ@discussions.microsoft.com> wrote in message
> > news:20B97594-1A47-4A94-81F2-DABA6B78F125@microsoft.com...
> > > Hello...first off thank you very much in advance, to everyone who replies
> > > and/or tries to help out :)
> > >
> > > Norton has been popping up its detected a virus... Backdoor.EggDrop
> > >
> > > The file infected is svchost.exe, i know this is a system critical file,
> > > which is why Norton doesnt have "access to the file" i'm assuming, so
> > > Norton
> > > is useless. I've tried everything I can think of. My friend tells me to
> > > delete svchost.exe, but i'm not sure that would be great for a critical
> > > file
> > > 😉
> > >
> > > If anyone can help me out or anything here please let me know, this is
> > > kind
> > > of my last restort 🙁
> > >
> > > Thank you,
> > > Joe
> >
> >
> >
 
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom