Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows/syswow64/ COM Surrogate dllhost.exe multiple running


  • Please log in to reply
9 replies to this topic

#1 jayreagan1026

jayreagan1026

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:40 PM

Posted 10 November 2014 - 12:45 PM

Hello Everybody, I keep getting multiple instances of COM Surrogate Syswow 64 dllhost.exe 32 eating up CPU, and from the Task manager, no matter how many I kill it from task manager, or how many times I run Hitman Pro and MalwareBytes to get rid of Trojans, pups, rootkits, I still keep getting these, and messages from Norton that outgoing access is being blocked to a shady looking website and IP address. I have seen a few videos on YouTube how to "RegEdit" an entry in CLSID {AB8902B4-09CA-4bb6-B78D-A8F5-9079A885} but this may be risky. Has anybody encountered this problem. I was told it's not a virus, but according to me, anything that makes my computer go crazy is a virus. I run Windows 7 64 bit. I would appreciate any help, this is making me mad, and it's annoying. Thanks.
Jay



BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,718 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:06:40 PM

Posted 10 November 2014 - 08:47 PM

Welcome aboard p22002758.gif

 

Please download Powelikscleaner (by ESET) and save it to your Desktop.

1. Double-click on ESETPoweliksCleaner.exe to start the tool.

2. Read the terms of the End-user license agreement and click Agree.

3. The tool will run automatically. If the cleaner finds a Poweliks infection, press the Y key on your keyboard to remove it.

newtool1_zpsa1caa06e.png

4. If Poweliks was detected "Win32/Poweliks was successfully removed from your system" will be displayed. Press any key to exit the tool and reboot your PC.

newtool2_zps0e6d39b1.png

The tool will produce a log in the same directory the tool was run from.

Please copy and paste the log in your next reply.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 jayreagan1026

jayreagan1026
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:40 PM

Posted 11 November 2014 - 07:20 AM

Thank you BC Advisor, I will try it.

 

Jay



#4 jayreagan1026

jayreagan1026
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:40 PM

Posted 11 November 2014 - 05:56 PM

My security setting wont allow this, that's the message I get, what's wrong ??? Thanks



#5 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:40 AM

Posted 11 November 2014 - 06:33 PM

Hi -EDITED

Always follow Broni for instructions -


Edited by noknojon, 11 November 2014 - 07:41 PM.


#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,718 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:06:40 PM

Posted 11 November 2014 - 07:19 PM

If that message comes up when you try download my tool...

 

a.    Open Internet Explorer.
b.    Click Tools and then options.
c.    Click on the security tab.
d.    Select the Internet Zone.
e.    Click on the Custom Level Button and then scroll down to Download.
f.     Make sure to enable File download.
g.    Click Apply and Ok
h.    Restart Internet Explorer and check if that helps.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#7 jayreagan1026

jayreagan1026
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:40 PM

Posted 11 November 2014 - 07:20 PM

I did this manually according to Norton with Regedit and the command prompt, things look good now, Hitman Pro found a lot of tracking cookies, I'm doing a MalwareBytes scan now, it would not find this embedded crap in the registry keys. Thanks this was driving me crazy. I'll scan with Norton next, so far no COM dllhost.exe running and no syswow64 errors.



#8 jayreagan1026

jayreagan1026
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:40 PM

Posted 11 November 2014 - 07:31 PM

Thank you very much !! I might try the Powelikscleaner too ... you people are the greatest, better than CNET this time... They helped me get rid of the FBI / State Dept hijacking .. that was harder, but that's when I got Hitman and Malwarebytes...

 

Jay



#9 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,718 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:06:40 PM

Posted 11 November 2014 - 07:35 PM

Please follow my instructions and run Powelikscleaner first.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#10 jayreagan1026

jayreagan1026
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:40 PM

Posted 11 November 2014 - 08:06 PM

I think the poweliks  and the adcliker is gone, but I'll try it anyway. thanks.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users