DLLHost function?

  • Thread starter Thread starter KB
  • Start date Start date
K

KB

what is the basic function of the DLLHOST process? while
connected, it takes up between 70-90% of CPU usage during
my idle time...and my cable modem activity lights keep
flickering...it sounds fishy to me...as if someone is
trying to access my computer. When I kill it, I am still
able to browse the net. If there a way to start/stop it
manually, once I know what its function is?
Many thanks,
KB.
 
Bit of info for you:

DCOM support module for DLL based COM objects (DCOM = Distributed Component
Object Model). DCOM is a software architecture model which is an intrinsic
part of Windows, of most Microsoft products, and of many non-Microsoft
products. In most cases you should never see DLLHOST in your Task List, as,
typically, DLLHOST starts, does what it has to do, and then terminates.
However, sometimes, if a Java COM object runs (this could happen if you are
browsing the Internet and come to a page which has Java code), DLLHOST may
not terminate, which is when you would see it in your Task List.

Recommendation :
Do not "End Task" it as there is no way to determine whether DLLHOST has
completed its task or not. For the more advanced users, however, deleting
the registry key "HKEY_LOCAL_MACHINE\SOFTWARE\ Microsoft\Java VM\MSDebug"
can often solve the problem of DLLHOST constantly appearing in the Task
List. Finally, if you keep getting DLLHOST errors on a Windows 2000/XP/2003
PC, then you may have the Welchia virus.
 
KB said:
what is the basic function of the DLLHOST process? while
connected, it takes up between 70-90% of CPU usage during
my idle time...and my cable modem activity lights keep
flickering...it sounds fishy to me...as if someone is
trying to access my computer. When I kill it, I am still
able to browse the net. If there a way to start/stop it
manually, once I know what its function is?
Many thanks,
KB.
Click to expand...

A symptom of the Welchia worm. Get the removal tool.
http://securityresponse.symantec.com/avcenter/venc/data/w32.welchia.worm.removal.tool.html
 
Hi,

Check/verify your settings here: Start/Run/Regedit

Start/Run/Regedit and navigate to this key:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\
Tcpip\Parameters
DataBasePath" = %SystemRoot%\help

And change it to:
DataBasePath" = %SystemRoot%\System32\drivers\etc

If this applies in your case:

Go to Windows\System32\DRIVERS\etc and rename hosts. Also go to:
winnt\help. If it is listed, delete it.
/top10faqs.htm
 
Oddly I do not have the key you mention but still have the
dllhost.exe in processes. This is a surrogate DCOM for me.
Keep smiling.
 
Not so. dllhost32.exe yes but not dllhost.exe I have this
process as a surrogate DCOM and has nothing to do
whatsoever with a virus. Keep smiling.
 
The said:
Not so. dllhost32.exe yes but not dllhost.exe I have this
process as a surrogate DCOM and has nothing to do
whatsoever with a virus. Keep smiling.
Click to expand...

Several worms use legitimate file names. Including this one. See
http://www.pchell.com/virus/welchia.shtml From that page,

"How Does the Welchia Worm Infect My Computer?

Copies itself to the Wins directory in the System or System32 folder in
Windows usually
C:\Windows\System32\Wins\Dllhost.exe for Windows XP or
C:\WinNT\System32\Wins\Dllhost.exe for Windows NT/2000
There is a legitimate file called Dllhost.exe (about 5-6K) in the System32
directory."
 
You must log in or register to reply here.

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

dllhost flake here and there to 100% CPU utilization. 1
dllhost is overwhelming my cpu 2
Having problems 1
Hard drive light flickers continuously. 48
HD running constantly 2
System Idle Process high cpu usage 4
network green light yellow light 7
Slow machine/System Process check? 5

Back
Top