Question About Drivers\svchost.exe

I am running BitDefender 2008 antivirus.

Recently, Zone Alarm said svchost.exe wanted access to the Internet. I denied it access, and after checking the Zone Alarm log, found a version of svchost.exe in the windows\system32\drivers directory. SDFix said it was a Trojan.

Apparently, BitDefender did not prevent whatever occurred to get it on my hard drive, and unfortunately I cleaned it off my system before I started researching things on this forum. I've run BitDefender, Windows Defender, and an online scan, which appear to indicate my computer is now clean.

Is there anything else I should do to make sure my computer is clean?

How can I prevent this from happening again?

Find more posts tagged with

Comments

Theoracle117

svchost.exe is a system file. I am sure of it. Sdfix must have detected a false positive.

rootkit

Maybe it's scvhost.exe and not svchost.exe

schaefer1234@hotpop.com

svchost.exe is a system file in the windows\system32 subdirectory.

The svchost.exe identified as a Trojan was in the windows\system32\drivers subdirectory.

I checked and had svchost.exe files in each subdirectory. Plus the svchost.exe file identified as a Trojan was about twice as large as the real svchost.exe file.

I was hoping to find out how it was likely delivered - were there other files that I should be deleting?

It irritates me that I can have my browser set up to require that I give a location for storing each file, and yet this file made it to the PC with no notice. Also, I did not download any exe files that could have harbored or otherwise put the file in the drivers subdirectory. I might have had java enabled but usually I only have java ****** enabled.

If the file was hidden in a jpg, html, or other web page, it should have been deleted when I closed my browser - I delete all history, cookies, ets., each time it is closed.