What is it and why is it(does it):

-taking up 13-18mb of my memory
-stop my sound in my games when i end it

Do i need it?

If you spelt it right yes .


Process File: svchost or svchost.exe
Process Name: Microsoft Service Host Process

Description:
svchost.exe is a system process belonging to the Microsoft Windows Operating System which handles processes executed from DLLs. This program is important for the stable and secure running of your computer and should not be terminated.

Note: svchost.exe is a process which is registered as the W32.Welchia.Worm. It takes advantage of the Windows LSASS vulnerability, which creates a buffer overflow and instigates your computer to shut down. To see more information about this vulnerability please look at the following Microsoft bulletin: http://www.microsoft.com/technet/security/bulletin/ms04-011.mspx

This is a registered security risk and should be removed immediately. Please see additional details regarding this process

If you spelt it right yes .


Process File: svchost or svchost.exe
Process Name: Microsoft Service Host Process

Description:
svchost.exe is a system process belonging to the Microsoft Windows Operating System which handles processes executed from DLLs. This program is important for the stable and secure running of your computer and should not be terminated.

Note: svchost.exe is a process which is registered as the W32.Welchia.Worm. It takes advantage of the Windows LSASS vulnerability, which creates a buffer overflow and instigates your computer to shut down. To see more information about this vulnerability please look at the following Microsoft bulletin: http://www.microsoft.com/technet/security/bulletin/ms04-011.mspx

This is a registered security risk and should be removed immediately. Please see additional details regarding this process



That is just confusing. Why did you put that thing about the worm in there?

Because it could be either , I don't know from what he posted . :)


Here is a link:

http://www.iamnotageek.com/a/Svchost.exe.php


Edit : Your probably right I didn't explain it very well. If he shuts it down it kills a dll (his sound) . The memory usage seems low so probably not a worm but depending where its located on his computer, and what processes its using it can be many things malware included. I was just pointing that out . Sorry for the confusion ,sometimes bad advice is worse than no advice, I'll remember that in future posts . :)

Because it could be either , I don't know from what he posted . :)


Here is a link:

http://www.iamnotageek.com/a/Svchost.exe.php


Edit : Your probably right I didn't explain it very well. If he shuts it down it kills a dll (his sound) . The memory usage seems low so probably not a worm but depending where its located on his computer, and what processes its using it can be many things malware included. I was just pointing that out . Sorry for the confusion ,sometimes bad advice is worse than no advice, I'll remember that in future posts . :)


Wait so the worm can name itself the same exact thing as the legitimate process?

If you have xp-service pack-2 your protected against the worm.....so microsoft says

If you have xp-service pack-2 your protected against the worm.....so microsoft says


All the more reason to update security patches . Welcome by the way . :)

@orcutt989, they can be altered slightly too just to confuse us, see it all the time on this forum. Its why I asked about the spelling ,oldest trick in the book. :D

What is it and why is it(does it):

-taking up 13-18mb of my memory
-stop my sound in my games when i end it

Do i need it?

There are multiple instances of the svchost.exe process running
on your computer at any given time.

You're ending the Windows Audio service (AudioSrv, one of many sevices
that depend on the svchost.exe) in Task Manager,when you kill the
process.

Yes, in this instance you need to leave the process running. Be careful
mucking around, with ending an process and not knowing it's function.

Try using Google, and find out what services you can turn off safely.There
are numerous sites that will help you. Use your Microsoft Management Console (located in Administrative Tools) to stop services,and not
msconfig.

Good luck.

So leave it running?

Try using Google, and find out what services you can turn off safely.There
are numerous sites that will help you. Use your Microsoft Management Console (located in Administrative Tools) to stop services,and not
msconfig.

Good luck.
I think it's be to run->"services.msc" and modify any settings from there.

It's harder to shut down RPC when you do that, according to Black Viper.



If someone doesn't know wtf they are doing, that's a good thing.



And Canuk: leave it running, all right.

Have a look at this, if you want to know what is what when it comes to windows processes.

-> http://www.theeldergeek.com/services_guide.htm#Services

if it's M$'s version you might need it to connect to your ISP to get your IP

Try using Google, and find out what services you can turn off safely.There
are numerous sites that will help you. Use your Microsoft Management Console (located in Administrative Tools) to stop services,and not
msconfig.

Good luck.
I think it's be to run->"services.msc" and modify any settings from there.

It's harder to shut down RPC when you do that, according to Black Viper.



If someone doesn't know wtf they are doing, that's a good thing.



And Canuk: leave it running, all right.

Have a look at this, if you want to know what is what when it comes to windows processes.

-> http://www.theeldergeek.com/services_guide.htm#Services


Black Viper is an excellent site SnnY. Here is a link, as his site is down
for reasons unknown. (web archive) Black Viper.com (http://web.archive.org/web/20041128084144/www.blackviper.com/WinXP/servicecfg.htm)