What is Svchost.exe? Generic Host Process for Win32 Services or svchost.exe is a legal and essential component of Windows which is used to host services which run from dynamic-link libraries (DLLs). Multiple instances of Svchost.exe can run at the same time. So it is not a problem in most cases if you see five or six or even more copies of svchost.exe running in your services because they host different groups of DLLs.
However, there are several known spyware and Trojans that pretend to be legal svchost.exe. They usually have the same name or one of the following names: svchost.exe, svchosts.exe (which often causes svchosts.exe page faults), Generic.exe, svcchost.exe and several others. Please note that legal svchost.exe should reside in Windows\System32 folder and should not appear in the startup list.
BEST WAY TO REMOVE
1- If the operating system of the infected computer is either Windows Me or Windows XP, turn off System Restore while this fix is being implemented. To turn off System Restore within Windows Me, click Start > Settings > Control Panel. Double-click “System.” Select “File System” from the Performance tab. Left click the “Troubleshooting” tab and check the “Disable System Restore” box. Click “OK.” To turn off System Restore within Windows XP, log in as Administrator and click “Start.” Right click “My Computer” and select “Properties” from the shortcut menu. Check the “Turn off System Restore” option for each drive on the System Restore tab. Left click “Apply” and “Yes” to confirm when prompted. Click “OK.”
2. Restart your computer in Safe Mode and log in as Administrator. Press “F8” after the first beep occurs during start up, before the display of the Microsoft Windows logo. Select the first option, to run Windows in Safe Mode from the selection menu.
3. Access the command prompt. Click Start > Run. Type “cmd.” Click OK > CD (change directory) from the command prompt, press the space bar. Type the name of the full directory path of the folder containing your Windows system files. It will be either “C:\Windows\System” or “C:\Windows\System 32.”
4. Press CTRL+ALT+DEL or CTRL+SHIFT+ESC key at the same time to open the Windows Task Manager . and then Click on the “Image Name” button to search for “Svchost.exe” process by name. Select the “csrss.exe” process and click on the “End Process” button to kill it.
5. Go to the path that you obtained in Step 3 and place the Svchost.exe file along with any other files in that folder into the “Recycle Bin.” Restart your computer and check the Windows Task Manager again to see if the Trojan is gone. .
To ensure that the Svchost.exe file running on your computer is legitimate and not a virus, We are not highly recommending to use the manual way to remove Svchost.exe You can easily remove the files in the temp folder by running one of System Mechanic Professional. we have used System Mechanic Professional from iolo to remove this EXE virus and it worked so we recommended to you too..
