Home > General > Svchosts.exe


Even after selecting the deny box the same alert box pops up again asking wanting permission; except the port address has clanged. Even though I knew about these stuff before, I never expect someone to demonstrate the whole process with us end-users in mind. Determining the services running under a SVCHOST.EXE process in Windows 8 The Windows 8 Task Manager makes it much easier to find what services are running under a particular SVCHOST.exe instance. thanks for "tasklist /SVC" May 4, 2009 UMEDmedia.com This was a huge help … Thanks, you explained it very well… umedmedia.com May 5, 2009 Schweppo so many people commented on this

This will let you see a description of what each process is and may help you to make a decision of what to do. I get alerts to let SvcHost.exe connect to the indernet, i say yes and a "Red Zone" alert comes up asking me to alowa program that may track what i do Thanks for answering some questions I've had for longer than that! Does it cause a problem if I click yes to block? http://www.howtogeek.com/howto/windows-vista/what-is-svchostexe-and-why-is-it-running/

I guess I can have some sleep finally! July 14, 2009 Machuku This is great, I now understand all the instances, i do hope no virus will resemble the process July 17, 2009 angel my computer ihave try so January 14, 2009 jd2066 @sawmaster: Those are not locations, they are hidden users that Windows creates for security purposes.

  • I work with .dll and .exe programs daily but am new to the field.
  • January 26, 2008 lankapo gosh, thanks for the info.
  • December 3, 2009 chris avg says this is a trojan horse… dumb ass AVG not as bad a mcafee tho lol December 4, 2009 chrisma THANK YOU for the information!
  • Register Now Online Tech Tips Search Menu Windows Windows 10 Windows 8 Windows 7 Windows Vista Windows XP Tips Computer Tips Google Tips Internet Explorer Tips MS Office Tips Mac OS
  • THANK YOU:) November 12, 2008 Dennis Thanks for the well written explaination November 13, 2008 [email protected]@noid Thanx for the info man !!
  • Added by an unidentified VIRUS, WORM or TROJAN! "Internet Config" definitely not required.
  • Great stuff!
  • Microsoft needs to take some lessons.

How can I tell if this is a legitimate svchost addition or a masquereding virus? April 24, 2008 Andrew Seaton Great, well written article - Thanks! I was always wondering what is this service all about but never actully try to dig it more. I totally agree with you with the "one config to bind them all" scenario never happening {no matter how much some might want it! ;-) } I will check the Black

Such viruses auto launch because all there really is is a single exe telling what dll when to run, the moment the dll is run the dormant virus hijacks your system. Thanks a lot for the usefull and well-arranged informations. Cheers… September 21, 2008 LK Fantastic article. https://en.wikipedia.org/wiki/Svchost.exe Thanks for your time June 16, 2008 Dimple I've just installed some security software, scvhost keeps coming up and requesting I block it, is this normal?

This program has been modified since it was last used." It shows the path as C:\WINDOWS\system32\ and asks me what I want to do? It is highly recommended that you run a FREE performance scan to automatically optimize memory, CPU and Internet settings. Now you can easily determine what services a particular SVCHOST process is running in Windows Vista or Windows 7. Geez, I was burning up too much calories just to find out what on earth is that SVCHOST.EXE all about, then The Geek easily cracked this one for me.

The service tag for each thread is stored in the SubProcessTag of its thread environment block (TEB). Some examples are Ssearch.biz and Home Search Assistant. September 12, 2008 rdsnet2k Why disable this and that in Windows, isn't "excessive disabling of processes" another name for not being able to afford sufficient resources (RAM, CPU, HDD, etc.) to February 21, 2009 Snowman Kevin, Start the Command Prompt from the program list or type "CMD" from the Run box.

Finally I got my proper answer and learn a lot of'bout it. Do you think it's safe to allow? Just a comment, I think it's irresponsible to just say "Find the service in the list that you would like to disable" How many people know what each of those services July 8, 2008 niki very clear & concise explaination of svchost.exe … I have reduced mine down to 3 in Windows XP PRO and thanks to this article I know which

Three run under the username "System," two under "Network Service," and one under "Local Service." Since svchost.exe has a history of being an uninvited guest to a masquerade party (i.e. Thanks! Microsoft. ^ http://www.spiegel.de/media/media-35688.pdf Further reading[edit] Russinovich, Mark; Solomon, David; Ionescu, Alex (2009), Windows® Internals (5th ed.), Microsoft Press, ISBN0-7356-2530-1 Russinovich, Mark; Solomon, David; Ionescu, Alex (2012), Windows Internals. November 19, 2008 Brock Thanks!

I've only 5 instances of svchost running on my box - I think thats pretty good, though I feel that I could do without one or two instances. The .exe extension on a filename indicates an executable file. Keep up the good work.

But I do have a questions before I try all the above.

At home running McAfee and have just had BDC problems with Vista recovery - hoping trojan is not in there but heaps more svchost programs running than I recall. I've been denying and so far and haven't noticed any problems with any of my programs. Windows 7's Current User Processes We, though, need to see all of the processes running on the computer. Thanks.

The application uses ports to connect to or from a LAN or the Internet. That's some good geeking! Thank you for all that you do. January 25, 2008 Chandoo Thanks alot for this info, I have always wondered what svc processes are up to. @peter, thanks for the links… :) January 25, 2008 joshua This only

This article not only explained the svchost process; it provided additional resources (both GUI and CLI) that greatly aid in understanding what my PC is doing under the hood. September 24, 2009 Shahab khan Quite a great post..right from the basics! it mention something like "autohotkey" and its icon is a "H" letter in a green box. August 9, 2008 Prof This was a remarkably clear and concise description.

October 21, 2008 CaptRon Somehow I still have an uncomfortable feeling. An example would be: C:\WINDOWS\system32\svchost.exe -k DcomLaunch In the above command line, the svchost process will look up the ServiceDLL associated with the service name from the DcomLaunch group and load sc config trkwks start= disabled Hopefully this helps somebody!