The story goes like this,

every time i login, i get 2 medium security alerts that try to access ccsvchst.exe.
the first is google update [aPID3048/tPID1632]who does a dup object ,the second is services.exe [aPID592/tPID2944] who does an open token .
is that normal what would you advice to do ?

 thanks ,

Garry