My system is very slow and it taskmanager is showing 100% CPU Utilization for SVCHOST.exe which belong to microsoft as confirmed with sysinternals procexp.exe .
Sysinternals has got wonderful set of tools to get into nuke and corner of windows, so that we can know what exactly is going on.
Then checked with sysinternals autoruns.exe
Whoa..found this sysgif32 in autorun with source file ~TMP42.tmp in windows temp folder. Immediately removed (i logged in safemode) that and stored in my quarentine folder for analysis.
Now i am looking for some guide for malware analysis and found this Presentation by Mandiant software. I am going through this Malware Analysis presentation now.