sarandigit said:
the task manager in my system shows four svchost.exe. are the other three viruses?
Nope. Don't worry. All the four are System services. Infact I have five running on my lappy!
__________
saurav_cheeta said:
@Vishal @Kiran
i am not sure about authors problem but in many systems of our cafe u get this problem...
turning offf the auto update helps but i dont want to do that !!!
Good find Saurav. Infact I remember seeing a alternative solution earlier sometime.
I will let u know ASAP.
__________
Saurav.....
Note that this is to be done if svchost.exe crashes with a error message.
I don't think so this applies to articflare. Because he didn't report any svchost error message. Anyways, if he has noticed it...he too can implement it.
Perform these steps leaving the svchost crash dialog open.
1. Click Start->Run, type "services.msc" (without quotation marks) in the open box and click OK.
2. Double click the service "Automatic Updates".
3. Click on the Log On tab, please ensure the option "Local System account" is selected and the option "Allow service to interact with desktop" is unchecked.
4. Check if this service has been enabled on the listed Hardware Profile. If not, please click the Enable button to enable it.
5. Click on the tab "General "; make sure the "Startup Type" is "Automatic". Then please click the button "Start" under "Service Status" to start the service.
6. Repeat the above steps with the other service: Background Intelligent Transfer Service (BITS)
Step 4: Re-register Windows Update components and Clear the corrupted Windows Update temp folder
================================
1. Click on Start and then click Run,
2. In the open field type "REGSVR32 WUAPI.DLL" (without quotation marks) and press Enter.
3. When you receive the "DllRegisterServer in WUAPI.DLL succeeded" message, click OK.
4. Please repeat these steps for each of the following commands:
REGSVR32 WUAUENG.DLL
REGSVR32 WUAUENG1.DLL
REGSVR32 ATL.DLL
REGSVR32 WUCLTUI.DLL
REGSVR32 WUPS.DLL
REGSVR32 WUPS2.DLL
REGSVR32 WUWEB.DLL
After the above steps are finished. Sicne temporary folder of Windows Update may be corrupted. We can refer to the following steps to rename this folder that
1. Click Start, Run, type: cmd and press Enter. Please run the following command in the opened window.
net stop WuAuServ
(note, you might need to reboot before the net stop command will work)
2. Click Start, Run, type: %windir% and press Enter.
3. In the opened folder, rename the folder SoftwareDistribution to SDold.
4. Click Start, Run, type: cmd and press Enter. Please run the following command in the opened window.
net start WuAuServ
UPDATE: This post has received a ton of comments. One, in particular, suggests an easier fix for this problem:
1.Go 2 the start menu
2.Right click "my computer"
3.Click "properties" then the "automatic updates" tab
4.Choose "turn off automatic updates"
5.Reboot your computer
6.Go back to start menu and in all programs go to "windows update" you have to be connected to the internet.
7.Manually update windows.
8.Turn your automatic updates back on.
More info: Click here
trojan/backdoor. kill the process (using ur task manager) svcchost.exe and and remove svcchost.exe from windows startup, then delete it. else just use 'delete doctor' or 'unlocker' to delete the nasty file !