In the task manager,i have noticed 5 processes listed as SVCHOST.EXE ,with details as follow
PID USER NAME
728,868 SYSTEM
812,1032 NETWORK SERVICES
1072 LOCAL SERVICES
As there are trojans also with the same name,how to check whether these are genuine microsoft processes or trojans in the system.
Another thing i noticed,during scan with SPYBOT-S&D(which I do almost daily) that during the whole time of scan(about 5-6 minutes) the CPU usage is at 100%.IS it normal to happen or there is something fishy going on?
PLEASE ENLIGHTEN A NEWBIE,WHO SAYS THANKS N ADVANCE
It isn’t unusual for there to be multiple svchost entries (currently I have five occurrences) in the Task Manager and for those User Names, provided the only location or the file is c:\windows\system32 (windows XP, other OSes may have it in a different location) then it should be OK.
Do a system search for svchost.exe and report the locations it is found.