is Windows Automatic Updates application which checks the Microsoft Windows Update website for updates to be installed. This file is known to cause high CPU usage
when performing its updating task.
Security update bulletins
...Microsoft releases security updates on the second Tuesday of each month. We publish security bulletins to announce and describe the update.
Determining whether a file is malware or a legitimate process usually depends on the location
(path) it is running from. One of the ways that malware tries to hide is to give itself the same name as a critical system file. However, it then places itself in a different location (folder) than where the legitimate file resides and runs from there. The legitimate wuauclt.exe file is located in the C:\Windows\system32 but you may find copies in C:\Windows\system32\dllcache, C:\Windows\ServicePackFiles, C:\I386 folders and sometimes in C:\Windows\Prefetch with a random set of alpha-numeric characters followed by the .pf extension. If found running from a different location it is probably malware. Keep in mind that a legitimate file can also be infected by some types of malware such as Virut
which is a dangerous polymorphic file infector
Anytime you come across a suspicious file for which you cannot find any information about, the file has a legitimate name but is not located where it is supposed to be, or you want a second opinion, submit it to one of the following online services that analyzes suspicious files:
In the "File to upload & scan
" box, browse to the location of the suspicious file and submit (upload) it for scanning/analysis.
Are you experiencing any signs or symptoms of infection like strange audio ads, unwanted pop-ups, security alerts, or browser redirects?
Edited by quietman7, 13 January 2011 - 11:19 AM.