RE: Remote...trying to access Microsoft Generic Host Process for Win32
From: MAP (MAP_at_discussions.microsoft.com)
Date: 09/02/04
- Next message: PA Bear: "Re: PLEASE HELP!!! I am lost...."
- Previous message: Paul Adare - MVP - Microsoft Virtual PC: "Re: PLEASE HELP!!! I am lost...."
- In reply to: Dodge: "Remote...trying to access Microsoft Generic Host Process for Win32"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 1 Sep 2004 18:57:03 -0700
"Dodge" wrote:
> I am running Windows xp Home Edition with service pack 2. I
> also am running Norton Internet Security 2004 as well as
> Norton Anti Virus 2004. All of which are completely
> updated.
> My question is that every so often my firewall pops up
> saying, "A remote system is attempting to access Microsoft
> Generic Host Process for Win32", and wants me to permit or
> deny it. Permit is recomended but everything I've been
> hearing says that someone is trying to hack into my
> computer. I was told to go into c:
> \windows\system32\drivers\etc, and open the "hosts" file
> and delete everything in it exept for some numbers which I
> think was my local host address. But that did not solve the
> problem. I've scanned my computer with lavasoft's adaware 6
> SE (updated) and spysweeper 3 (updated), as well as Norton
> (updated) and found no problems. Why do I get a remote
> system trying to access my computer? Thanks for any advice.
>
Service Host – Generic Host Process for Win32 Services. The full path to
this file should be shown in The Ultimate Troubleshooter as
C:\WinNT\System32\Svchost.exe or C:\Windows\System32\Svchost.exe.
Windows 2000/XP/2003 only. SVCHOST is a generic process which acts as a host
for processes that run from DLLs rather than EXEs. At startup SVCHOST checks
the Services portion of the Registry to construct a list of DLL-based
services that it needs to load, and then loads them. There can be many
instances of SVCHOST running, as there will be one instance of SVCHOST for
every DLL-based service or grouping of services (the grouping of services is
determined by the programmers who wrote the services in question). Under
Windows XP Professional and Windows 2003 you can find out what DLL-based
services SVCHOST is running by typing Tasklist /SVC at a Command/MS‑DOS
Prompt (this command is not available in Windows XP Home), while under
Windows 2000 you need to use the TLIST –s command from a Command Prompt
(MS-DOS Prompt) (depending on how Windows 2000 was installed you may need to
download TLIST from the Microsoft website or install it from one of the
miscellaneous folders on the Windows 2000 CD).
Recommendation :
An integral part of the operating system, leave alone – multiple instances
of SVCHOST is a normal occurrence. If you experience SVCHOST errors, the
problem is most likely not with SVCHOST but with the DLLs it is hosting.
However, if you experience a lot of SVCHOST errors, and particularly, if the
full path to SVCHOST.EXE is not any of the above, then you most likely have
a virus (see below).
- Next message: PA Bear: "Re: PLEASE HELP!!! I am lost...."
- Previous message: Paul Adare - MVP - Microsoft Virtual PC: "Re: PLEASE HELP!!! I am lost...."
- In reply to: Dodge: "Remote...trying to access Microsoft Generic Host Process for Win32"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
