svchost.exe

[ben-the-slacker]

I just reformatted my computer an hour ago and put Adaware free on it. Updated the prog and did a scan. Came up with

c:\windows\system32\wins\svchost.exe

Adaware lists this as Malware, but it's not deletable. How do I get rid of this? Does anyone else have this problem?

[Droppyale]

boy that's weird.. I thought that was a system file.



Did you installl anything after you did the format?

[e980238]

When I have installed zone alarm in the past, svchost.exe has always poped up but all I know is that it is part of windows. I usually allow it but really am not sure about it.

[ben-the-slacker]

All I have installed right now is Pop-Up Stopper, Ad Aware 6, Spybot, and AIM.

[Droppyale]

does spybot detect it as malware?

what does adaware give you as a description?

[e980238]

well even if you didnt install any of those you would still have svchost.exe. Its a windows system file.

[Droppyale]

have you done your windows updates?

[Droppyale]

Here's some good info

http://support.microsoft.com/?kbid=314056

[ben-the-slacker]

I haven't done WinUpdate yet. No time right now.

Spybot didn't detect it as malware. Maybe Adaware is just being retarded...

wtf, adaware just detected c:\windows\system32\wins\dllhost.exe as malware...

[davidamarkley]

I got hit with this virus just about a week ago...

It's a "Backdoor.Litmus" variant...

Here's info on how to get rid of it...

Also, for future reference, the file "svchost.exe" is a system file, but unless it's located in "C:/WINDOWS/system32/" or "%SYSTEMROOT%/system32/" it's not the legit file.

Also, after you follow the directions, scan with the HouseCall program by going HERE.

Also, if you have an Anti-Virus installed, make sure to keep the definitions up to date.

HTH,

David