Boost Connect

Uncovering the DNA of programs.

Good programs

Fair programs

Bad programs

What is svchost.exe?

Part of Host Process for Windows Services by Microsoft

What is it?

Host Process for Windows Tasks is a generic process which acts as a host for processes that run from DLLs rather than EXEs. At startup TASKHOST checks the Services portion of the Registry to construct a list of DLL-based services that it needs to load, and then loads them.

(svchost.exe is a system file that is installed with Windows)

Download Boost and enjoy your PC. Speed up Host Process for Windows Services and optimize your PC.

How does svchost.exe run?

Service - svchost.exe runs as a background Windows service called 'eventlog' (Журнал событий Windows). This is a system service that is installed with the Windows operating system and protected with Window's File Protection. This service runs as the NETWORK SERVICE account with minimum privileges on the local computer and acts as the computer on the network. Журнал событий Windows runs as a service that can share a process with other Win32 services.

How does svchost.exe start?

Driver - svchost.exe is typically associtated with identifier name of 1394hub. A device driver or software driver is a computer program allowing higher-level computer programs to interact with a hardware device.

Host Process for Windows Services is loaded by:

svchost.exe (Host Process for Windows Services by Microsoft)

Community

What is the community is seeing?	What is the community is doing?
About 0.4% of all Boost users have the svchost.exe process running.	Of the 0.4% of svchost.exe users, less than 1% have disabled it.

How resource intensive is svchost.exe?

Comparison based on the average resource utilization across all programs.

0.00012% CPU1152.3%

Average CPU utilization across all programs is 0.00001%.

20.62 MB RAM95.7%

Average private memory utilization across all programs is 21.53 MB.

46 /min2.0%

Average I/O read and write operations for all programs is 2,253 per minute.

Typical file (disk image) location:

C:\Windows\System32\svchost.exe

Are there other versions of Host Process for Windows Servi...?

svchost.exe - version 6.3.9600.16384 (winblue_rtm.130821-1623) (this)

svchost.exe - version 6.3.9431.0 (winmain_bluemp.130615-1214)

svchost.exe - version 6.2.9200.16384 (win8_rtm.120725-1247)

svchost.exe - version 6.2.8400.0 (winmain_win8rc.120518-1423)

svchost.exe - version 6.2.8250.0 (winmain_win8beta.120217-1520)

svchost.exe - version 6.2.8102.0 (winmain_win8m3.110823-1455)

svchost.exe - version 6.1.7600.16385 (win7_rtm.090713-1255)

svchost.exe - version 6.0.6000.16386 (vista_rtm.061101-2205)

What modules are loaded?

A module is a dynamic link library (DLL) or an executable file that is loaded into the process. Below is a list of non-system modules that are loaded by Host Process for Windows Services.

mpssvc.dll (Microsoft Protection Service by Microsoft)

nlasvc.dll (Network Location Awareness 2 by Microsoft)

profsvc.dll (ProfSvc by Microsoft)

ikeext.dll (IKE extension by Microsoft)

iphlpsvc.dll (Service that offers IPv6 connectivity over an IPv4 network. by Microsoft)

appinfo.dll (Application Information Service by Microsoft)

es.dll (COM+ by Microsoft)

upnphost.dll (UPnP Device Host by Microsoft)

umpnpmgr.dll (User-mode Plug-and-Play Service by Microsoft)

dhcpcore.dll (DHCP Client Service by Microsoft)

provsvc.dll (Windows HomeGroup by Microsoft)

ipsecsvc.dll (Windows IPsec SPD Server DLL by Microsoft)

themeservice.dll (Windows Shell Theme Service Dll by Microsoft)

umpo.dll (User-mode Power Service by Microsoft)

browser.dll (Computer Browser Service DLL by Microsoft)

dnsrslvr.dll (DNS Caching Resolver Service by Microsoft)

lmhsvc.dll (TCPIP NetBios Transport Services DLL by Microsoft)

audiosrv.dll (Windows Audio Service by Microsoft)

wkssvc.dll (Workstation Service DLL by Microsoft)

cryptsvc.dll (Cryptographic Services by Microsoft)

srvsvc.dll (Server Service DLL by Microsoft)

wmisvc.dll (WMI by Microsoft)

ipnathlp.dll (Microsoft NAT Helper Components by Microsoft)

wscsvc.dll (Windows Security Center Service by Microsoft)

qmgr.dll (Background Intelligent Transfer Service by Microsoft)

wcmsvc.dll (Windows Connection Manager Service DLL by Microsoft)

ncdautosetup.dll (Network Connected Devices Auto-Setup service DLL by Microsoft)

r4eel64a.dll (Dolby PCEE4 LFX APO by Dolby Laboratories)

r4eed64a.dll (Dolby PCEE4 COM DLL by Dolby Laboratories)

rtkapo64.dll (Realtek(r) LFX/GFX DSP component by Realtek Semiconductor Corp)

shsvcs.dll (‎‎Windows Shell Services Dll by Microsoft)

What else is related?

ehssetup.dll (Microsoft® Windows® Operating System by Microsoft)

wmssetup.dll (Microsoft® Windows® Operating System by Microsoft)

workfoldersshell.dll (Microsoft (C) Work Folders Shell Extension by Microsoft)

autoworkplace.exe (Microsoft (R) Windows (R) Operating System by Microsoft)

skydrive.exe (SkyDrive Sync Engine Host by Microsoft)

tabtip32.exe (Touch Keyboard and Handwriting Panel Helper by Microsoft)

ienrcore.exe (Windows® Internet Explorer by Microsoft)

wu-ie10-windows7-x86.exe (Windows® Internet Explorer by Microsoft)

wpcsvc.dll (WPC Filtering Service by Microsoft)

updater.dll (Skype by Microsoft)

skype.exe (Skype by Microsoft)

themeui.dll (Windows-Design-API by Microsoft)

sstext3d.scr (Direct3D-Textbildschirmschoner by Microsoft)

photoviewershim.dll (Windows Live Photo Gallery by Microsoft)

logonui.exe (Windows-Anmeldebenutzeroberfläche by Microsoft)

system.componentmodel.composition.resources.dll (Microsoft® .NET Framework by Microsoft)

presentationframework.resources.dll (Microsoft® .NET Framework by Microsoft)

updater.exe (Skype by Microsoft)

msxml4a.dll (Microsoft(R) MSXML 4.0 SP1 by Microsoft)

msxml4r.dll (Microsoft(R) MSXML 4.0 SP1 by Microsoft)

msxml4.dll (Microsoft(R) MSXML 4.0 SP 2 by Microsoft)

freecell.exe (Entertainment Pack FreeCell Game by Microsoft)

What Windows OS versions does this run on?

Windows 8.1 (6.2.9200.0)

About Microsoft Corporation

Microsoft, founded in 1975 by Bill Gates and Paul Allen, is a veteran software company, best known for its Microsoft Windows operating system and the Microsoft More...

www.microsoft.com

Download Boost

File details

File name: svchost.exe

Publisher: Microsoft Corporation

Name: Host Process for Windows Services

Description: Microsoft® Windows® Operating System

Version: 6.3.9600.16384 (winblue_rtm.130821-1623)

Product version: 6.3.9600.16384

Original file name: svchost.exe.mui

Windows file protection: Yes

Digital certificate

Issued to: Microsoft Corporation

Certificate authority: Microsoft Corporation

Expiration date: 6/13/2014

Resource utilization

CPU utilization averages

Total CPU: 0.0002590374%

Privileged CPU: 0.0001438124%

User CPU: 0.00011522501726%

Privileged CPU time: 47427.56 ms

Privileged CPU time /min: 63 ms

CPU cycle count: 400,199,680

CPU cycle count /min: 351,614,694

Memory utilization averages

Committed memory: 281.99 MB

Peak committed memory: 152.28 MB

Paged memory: 20.62 MB

Peak paged memory: 57.69 MB

Paged system memory: 212.98 KB

Non-paged system memory: 32.03 KB

Working set memory: 72.71 MB

Peak working set memory: 110.84 MB

Min working set memory: 25.33 MB

Private memory: 20.62 MB

Page faults: 771,350

Page faults /min: 1,298

Process I/O averages

Total read operations: 16,450

Read operations /min: 30

Total read transfer: 46.44 MB

Read transfer /min: 84.44 KB

Total write operations: 9,708

Write operations /min: 16

Total write transfer: 27.43 MB

Write transfer /min: 44.77 KB

Total other operations: 248,346

Other operations /min: 380

Total other transfer: 16.14 MB

Other Transfer /min: 25.18 KB

Resources

Handle count average: 666

Thread count average: 17

Thread resource averages

sechost.dll

dab.dll

ntdll.dll

combase.dll

httpprxm.dll

wevtsvc.dll

ssdpapi.dll

taskcomp.dll

msvcrt.dll

fundisc.dll

rpcss.dll

shcore.dll

ssdpsrv.dll

fntcache.dll

svchost.exe

Process details

Runs as (owner): Network Service

Windows platform: 64-bit

Runs as a service: Yes

Child Processes

itype.exe (Microsoft Mouse and Keyboard Center by Microsoft)

ipoint.exe (Microsoft IntelliPoint by Microsoft)

dllhost.exe (COM Surrogate by Microsoft)

settingsynchost.exe (Host Process for Setting Synchronization by Microsoft)

tabtip.exe (Touch Keyboard and Handwriting Panel by Microsoft)

wmiprvse.exe (WMI Provider Host by Microsoft)

skydrive.exe (SkyDrive Sync Engine Host by Microsoft)

dashost.exe (Device Association Framework Provider Host by Microsoft)

taskhostex.exe (Host Process for Windows Tasks by Microsoft)

livecomm.exe (Communications Service by Microsoft)

runtimebroker.exe (Runtime Broker by Microsoft)

Process Commands

C:\WINDOWS\system32\svchost.exe -k RPCSS

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork

C:\WINDOWS\system32\svchost.exe -k netsvcs

Hosted services

AcfXAudioService

ActiveX Installer (AxInstSV) (AxInstSV)

AeLookupSvc

Akamai

AllUserInstallAgent

AppHostSvc

AppIDSvc

Appinfo

Application Experience (AeLookupSvc)

Application Management (AppMgmt)

AppMgmt

AppReadiness

AppXSvc

ASBroker

ASChannel

AudioEndpointBuilder

AudioSrv

AxInstSV

Background Intelligent Transfer Service (BITS)

Base Filtering Engine (BFE)

BDESVC

BFE

BITS

Bluetooth Support Service (bthserv)

BranchCache (PeerDistSvc)

BrokerInfrastructure

Browser

BsBackup

BsFileScan

BsFire

BsMailProxy

BsMain

bthserv

Certificate Propagation (CertPropSvc)

CertPropSvc

Cryptographic Services (CryptSvc)

CryptSvc

CscService

DCOM Server Process Launcher (DcomLaunch)

DcomLaunch

defragsvc

Desktop Window Manager Session Manager (UxSms)

DeviceAssociationService

DeviceInstall

Dhcp

DHCP Client (Dhcp)

Diagnostic Policy Service (DPS)

Diagnostic Service Host (WdiServiceHost)

Diagnostic System Host (WdiSystemHost)

Distributed Link Tracking Client (TrkWks)

DNS Client (Dnscache)

Dnscache

dot3svc

DPS

drvsvc

DsmSvc

EapHost

ehstart

EMDMgmt

Eventlog

EventSystem

Extensible Authentication Protocol (EapHost)

ezGOSvc

ezSharedSvc

fdPHost

FDResPub

fhsvc

FontCache

ftpsvc

Function Discovery Resource Publication (FDResPub)

FunshionSvr

getPlusHelper

gpsvc

Health Key and Certificate Management (hkmsvc)

HFGService

hidserv

hkmsvc

HomeGroup Listener (HomeGroupListener)

HomeGroup Provider (HomeGroupProvider)

HomeGroupListener

HomeGroupProvider

HPHNDUSVC

hpqcxs08

hpqddsvc

HPSLPSVC

HsfXAudioService

Human Interface Device Access (hidserv)

IKE and AuthIP IPsec Keying Modules (IKEEXT)

IKEEXT

Internet Connection Sharing (ICS) (SharedAccess)

IP Helper (iphlpsvc)

IPBusEnum

iphlpsvc

iprip

IPsec Policy Agent (PolicyAgent)

Irmon

Journal d’événements Windows (eventlog)

KtmRm

KtmRm for Distributed Transaction Coordinator (KtmRm)

LanmanServer

LanmanWorkstation

lfsvc

Link-Layer Topology Discovery Mapper (lltdsvc)

lltdsvc

lmhosts

LPDSVC

LSM

Mcx2Svc

Media Center Extender Service (Mcx2Svc)

MHN

Microsoft iSCSI Initiator Service (MSiSCSI)

Microsoft Software Shadow Copy Provider (swprv)

MMCSS

MpsSvc

MSiSCSI

Multimedia Class Scheduler (MMCSS)

napagent

NcaSvc

NcbService

NcdAutoSetup

necusb

Network connectivity

TCP: localhost on port 135

UDP: LISTENING on port 52629

UDP: LISTENING on port 59280

UDP: LISTENING on port 5355

UDP: LISTENING on port 64831

Image hashes

MD5: e4ca434f251681590d0538bc21c32d2f

SHA-1: 4eea9bdfe0eb41759d96ec9bd224c4519314a8fa

PE image details

Langauge*: Microsoft Visual C++

File entropy: 5.87847

Import Table

advapi32.dll View import functions for advapi32.dll

api-ms-win-core-crt-l1-1-0.dll View import functions for api-ms-win-core-crt-l1-1-0.dll

api-ms-win-core-crt-l2-1-0.dll View import functions for api-ms-win-core-crt-l2-1-0.dll

api-ms-win-core-delayload-l1-1-1.dll View import functions for api-ms-win-core-delayload-l1-1-1.dll

api-ms-win-core-errorhandling-l1-1-0.dll View import functions for api-ms-win-core-errorhandling-l1-1-0.dll

api-ms-win-core-errorhandling-l1-1-1.dll View import functions for api-ms-win-core-errorhandling-l1-1-1.dll

api-ms-win-core-handle-l1-1-0.dll View import functions for api-ms-win-core-handle-l1-1-0.dll

api-ms-win-core-heap-l1-1-0.dll View import functions for api-ms-win-core-heap-l1-1-0.dll

api-ms-win-core-heap-l1-2-0.dll View import functions for api-ms-win-core-heap-l1-2-0.dll

api-ms-win-core-heap-obsolete-l1-1-0.dll View import functions for api-ms-win-core-heap-obsolete-l1-1-0.dll

api-ms-win-core-libraryloader-l1-1-1.dll View import functions for api-ms-win-core-libraryloader-l1-1-1.dll

api-ms-win-core-localization-l1-1-1.dll View import functions for api-ms-win-core-localization-l1-1-1.dll

api-ms-win-core-localization-l1-2-0.dll View import functions for api-ms-win-core-localization-l1-2-0.dll

api-ms-win-core-localization-l1-2-1.dll View import functions for api-ms-win-core-localization-l1-2-1.dll

api-ms-win-core-processenvironment-l1-1-0.dll View import functions for api-ms-win-core-processenvironment-l1-1-0.dll

api-ms-win-core-processenvironment-l1-1-1.dll View import functions for api-ms-win-core-processenvironment-l1-1-1.dll

api-ms-win-core-processenvironment-l1-2-0.dll View import functions for api-ms-win-core-processenvironment-l1-2-0.dll

api-ms-win-core-processthreads-l1-1-0.dll View import functions for api-ms-win-core-processthreads-l1-1-0.dll

api-ms-win-core-processthreads-l1-1-1.dll View import functions for api-ms-win-core-processthreads-l1-1-1.dll

api-ms-win-core-processthreads-l1-1-2.dll View import functions for api-ms-win-core-processthreads-l1-1-2.dll

api-ms-win-core-profile-l1-1-0.dll View import functions for api-ms-win-core-profile-l1-1-0.dll

api-ms-win-core-registry-l1-1-0.dll View import functions for api-ms-win-core-registry-l1-1-0.dll

api-ms-win-core-sidebyside-l1-1-0.dll View import functions for api-ms-win-core-sidebyside-l1-1-0.dll

api-ms-win-core-string-l1-1-0.dll View import functions for api-ms-win-core-string-l1-1-0.dll

api-ms-win-core-string-obsolete-l1-1-0.dll View import functions for api-ms-win-core-string-obsolete-l1-1-0.dll

api-ms-win-core-synch-l1-1-1.dll View import functions for api-ms-win-core-synch-l1-1-1.dll

api-ms-win-core-synch-l1-2-0.dll View import functions for api-ms-win-core-synch-l1-2-0.dll

api-ms-win-core-sysinfo-l1-1-1.dll View import functions for api-ms-win-core-sysinfo-l1-1-1.dll

api-ms-win-core-sysinfo-l1-2-0.dll View import functions for api-ms-win-core-sysinfo-l1-2-0.dll

api-ms-win-core-sysinfo-l1-2-1.dll View import functions for api-ms-win-core-sysinfo-l1-2-1.dll

api-ms-win-core-threadpool-l1-1-1.dll View import functions for api-ms-win-core-threadpool-l1-1-1.dll

api-ms-win-core-threadpool-private-l1-1-0.dll View import functions for api-ms-win-core-threadpool-private-l1-1-0.dll

api-ms-win-obsolete-kernelbase-l1-1-0.dll View import functions for api-ms-win-obsolete-kernelbase-l1-1-0.dll

api-ms-win-security-base-l1-1-0.dll View import functions for api-ms-win-security-base-l1-1-0.dll

api-ms-win-security-base-l1-2-0.dll View import functions for api-ms-win-security-base-l1-2-0.dll

api-ms-win-service-core-l1-1-0.dll View import functions for api-ms-win-service-core-l1-1-0.dll

api-ms-win-service-core-l1-1-1.dll View import functions for api-ms-win-service-core-l1-1-1.dll

api-ms-win-service-winsvc-l1-1-0.dll View import functions for api-ms-win-service-winsvc-l1-1-0.dll

api-ms-win-service-winsvc-l1-2-0.dll View import functions for api-ms-win-service-winsvc-l1-2-0.dll

kernel32.dll View import functions for kernel32.dll

msvcrt.dll

ntdll.dll

rpcrt4.dll View import functions for rpcrt4.dll

Stay up to date with news about Boost

Subscribe to our newsletter to receive the latest Boost news and discounts.