I have Symantec Endpoint 12.1.3 on a Windows 7 pc. It is infected. one of the svchost.exe files (three on the hard drive), one in SYSTEM32 keeps trying to change my Host file and DNS files. Symantec blocks all attempts. I submitted the three svchost.exe files for virus detection and they are clean. The file I suspect to be corrupted is in the WINSXS directory in Windows 7. What do I do? I have scanned and rescanned with no viruses or spyware but something is there. I am an experienced virus hunter and virus hunt for many companies. Now, one of my work pcs is infected and I cannot see it.
Thanks in advance to all,