For the past 2 days (not before), I've gotten a ZoneAlarm Alert re WMI trying to access the internet; I've seen "mixed messages" on the Net re this being a valid Windows process or not, so I've chosen to deny access each time.
A search of my pc found several "wmiprvse.exe" files
in several C:\WINDOWS subfolders:
i386$NtUninstallKB956572$PrefetchSystem32\dllcache System32\wbem$hf_mig$\KB956572\SP3GDR$hf_mig$\KB95 6572\SP3QFE& 4 different SoftwareDistribution\Download\ folders, also ending in SP3GDR and SP3QFE
How do I tell if the process is legit?Should I continue to deny access?
Operating System:Windows XP Home Edition
Product Name:ZoneAlarm Internet Security Suite