Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

6.3.9600.16384 (winblue_rtm.130821-1623) 5.51%
6.3.9600.16384 (winblue_rtm.130821-1623) 0.06%
6.3.9431.0 (winmain_bluemp.130615-1214) 0.25%
6.3.9431.0 (winmain_bluemp.130615-1214) 0.00%
6.2.9200.16384 (win8_rtm.120725-1247) 0.95%
6.2.9200.16384 (win8_rtm.120725-1247) 0.95%
6.2.9200.16384 (win8_rtm.120725-1247) 1.98%
6.2.8400.0 (winmain_win8rc.120518-1423) 0.06%
6.2.8400.0 (winmain_win8rc.120518-1423) 0.06%
6.2.8250.0 (winmain_win8beta.120217-1520) 0.00%
6.2.8102.0 (winmain_win8m3.110823-1455) 0.06%
6.1.7600.16385 (win7_rtm.090713-1255) 26.23%
6.1.7600.16385 (win7_rtm.090713-1255) 44.56%
6.1.7600.16385 (win7_rtm.090713-1255) 0.00%
6.1.7600.16385 (win7_rtm.090713-1255) 1.89%
6.1.7600.16385 (win7_rtm.090713-1255) 0.00%
6.1.7600.16385 (win7_rtm.090713-1255) 0.00%
6.0.6000.16386 (vista_rtm.061101-2205) 6.47%
6.0.6000.16386 (vista_rtm.061101-2205) 1.41%
6.0.6000.16386 (vista_rtm.061101-2205) 0.38%
5.2.3790.3959 (srv03_sp2_rtm.070216-1710) 0.00%
5.2.3790.3959 (srv03_sp2_rtm.070216-1710) 0.03%
5.1.2600.5689 (xpsp_sp3_qfe.081003-1407) 0.10%
5.1.2600.5512 (xpsp.080413-2111) 6.20%
5.1.2600.5512 (xpsp.080413-2111) 0.41%
View more

Relationships

Child processes
Related files

svchost.exe

Host Process for Windows Services by Microsoft Corporation (Signed)

Remove svchost.exe
Version:   5.2.3790.3959 (srv03_sp2_rtm.070216-1710)
MD5:   46300880a5062a41c16df5e3e836a6c9
SHA1:   57a6116206e3fe79f15177a891d60c1ef6a01b18
SHA256:   7ba7e44427b4fdf1d90bb2d5966ed62bb455b5d97102311ebf0ebfe85a766dfd
This is a Windows system installed file with Windows File Protection (WFP) enabled.

What is svchost.exe?

Host Process for Windows Tasks is a generic process which acts as a host for processes that run from DLLs rather than EXEs. At startup TASKHOST checks the Services portion of the Registry to construct a list of DLL-based services that it needs to load, and then loads them.

Overview

svchost.exe has been configured with a firewall exception which allows both inbound and outbound network communication without being blocked. The file is digitally signed by Microsoft Corporation. and is compiled as a 64 bit program.

DetailsDetails

File name:svchost.exe
Publisher:Microsoft Corporation
Product name:Host Process for Windows Services
Description:Microsoft® Windows® Operating System
Typical file path:C:\Windows\System32\svchost.exe
Original name:svchost.exe.mui
File version:5.2.3790.3959 (srv03_sp2_rtm.070216-1710)
Product version:5.2.3790.3959
Size:25 KB (25,600 bytes)
Certificate
Issued to:Microsoft Corporation
Authority (CA):Microsoft Corporation
Expiration date:Friday, June 13, 2014
Digital DNA
Entropy:5.878473
File packed:No
Code language:Microsoft Visual C++
.NET CLR:No
More details

BehaviorsBehaviors

Services
This is the shared Service Host controller that runs some of the following shared services:
  • Service name 'QQPCFixSvc'
  • Service name 'Журнал событий Windows'
Drivers
  • SDGame
  • WinDefend
  • 1394hub
Windows firewall allowed programs
Exceptions allow programs to access to the Internet through an outbound connections
  • Firewall exception for 'C:\Windows\system32\svchost.exe'
Network connections
Access through an approved Windows firewall exception
  • [UDP] listens on port 1900
  • [UDP] listens on port 1286

    • ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.00023836%
    0.028634%
    Kernel CPU:0.00014107%
    0.013761%
    User CPU:0.00009729%
    0.014873%
    Kernel CPU time:8,945 ms/min
    100,923,805ms/min
    Context switches:17/sec
    284/sec
    Memory
    Private memory:6.13 MB
    21.59 MB
    Private (maximum):9.84 MB
    Private (minimum):4.9 MB
    Non-paged memory:6.13 MB
    21.59 MB
    Virtual memory:81.9 MB
    140.96 MB
    Virtual memory (peak):119.06 MB
    169.69 MB
    Working set:6.59 MB
    18.61 MB
    Working set (peak):10.36 MB
    37.95 MB
    Page faults:119,522/min
    2,039/min
    I/O
    I/O read transfer:9.9 KB/sec
    1.02 MB/min
    I/O read operations:5/sec
    343/min
    I/O write transfer:23.74 KB/sec
    274.99 KB/min
    I/O write operations:8/sec
    227/min
    I/O other transfer:2.27 KB/sec
    448.09 KB/min
    I/O other operations:88/sec
    1,671/min
    Resource allocations
    Threads:19
    12
    Handles:364
    600
    GUI GDI count:5
    103
    GUI USER count:7
    49

    BehaviorsProcess properties

    Integrety level:Undefined
    Platform:64-bit
    Command lines:
    • C:\Windows\System32\svchost.exe -k localservice
    • C:\Windows\System32\svchost.exe -k dcomlaunch
    • C:\Windows\System32\svchost.exe -k rpcss
    • C:\Windows\System32\svchost.exe -k networkservice
    • C:\Windows\System32\svchost.exe -k netsvcs
    • C:\Windows\System32\svchost.exe -k imgsvc
    • C:\Windows\System32\svchost.exe -k wudfservicegroup
    • (8 more)
    Owner:SYSTEM
    Parent process:services.exe (by Microsoft)

    ResourcesThreads

    Averages
     
    ndptsp.tsp
    Total CPU:0.00097868%
    0.272967%
    Kernel CPU:0.00000000%
    0.107585%
    User CPU:0.00097868%
    0.165382%
    Memory:88 KB
    1.16 MB
    msvcp60.dll
    Total CPU:0.00034134%
    Kernel CPU:0.00034134%
    User CPU:0.00000000%
    Memory:936 KB
    Normaliz.dll
    Total CPU:0.00000968%
    Kernel CPU:0.00000726%
    User CPU:0.00000242%
    Memory:40 KB
    svchost.exe (main module)
    Total CPU:0.00000484%
    Kernel CPU:0.00000484%
    User CPU:0.00000000%
    Memory:36 KB

    Common loaded modules

    These are modules that are typiclaly loaded within the context of this process.

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 8.1 Pro 100.00%

    Distribution by countryDistribution by country

    Austria installs about 79.00% of Host Process for Windows Services.
    Back to top
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE