Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Missing dllhost.exe process, should I be concerned?


  • Please log in to reply
15 replies to this topic

#1 RaveBlack

RaveBlack

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:53 PM

Posted 28 May 2016 - 03:34 AM

So last January, I posted here about dllhost.exe randomly opening and closing in the background with my username, legit process and legit process ID. I was assured that this was nothing to worry about, and it eventually went away.

About a week ago, it showed back up. Same behavior, randomly opening, staying open for about 5-10 seconds, then closing. Frequency of anywhere from hours between to one right after another. Legit process (it's come mostly from System32, though I've seen it pop up a few times from SysWOW64, both legit), legit ID (F9717507-6651-4EDB-BFF7-AE615179BCCF), running from ComSysApp. I've run ESET and MBAM, both came back clean. I even ran JRT and TDSSKiller to see if they would do anything, they came back clean too. Still comes up after all of them. Less than 3 MB each time. Nothing seems to be misbehaving there, though I still have no idea what it's doing each time.

All this is the same as the last time, except for one thing that happened a few days after it started again: the dllhost.exe process run by SYSTEM is no longer running. No error messages or anything to explain what happened. Quite literally there one day and gone the next. Everything seems to be running fine without it, though. Not even the barest hint of an error message or anything going wrong.

Should I be concerned, or is this just my computer being weird?



BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:03:53 PM

Posted 28 May 2016 - 10:46 AM

Please run System File Checker
 
The sfc /scannow command scans all protected system files and replaces corrupted and incorrect versions with correct Microsoft versions.
 
Click on the Start orb rsz_1rsz_1rsz_start_orb_zpshjewtibd.png and then type cmd in the Search programs and files box.
 
In the pane above the search box Programs will appear with cmd below it, right click on cmd and select Run as administrator.
 
If you are prompted for an administrator password or for a confirmation, enter the password, or click Allow.
 
This will open the Elevated Command Prompt, it will look similar to the image below.
 
command%20prompt%20w8_zpsxjmewau9.png
 
Copy and paste sfc /scannow in the command prompt, then press Enter to start the scan.  
 
If the scan finds no integrity  problems the scan will stop.  Type in exit, then press Enter to stop the scan.
 
When the scan is finished and if intergrity issues are found (corrupt files that couldn't be repaired), please do the following.
 
Click on the Start orb rsz_1rsz_1rsz_start_orb_zpshjewtibd.png then type cmd in the Search box. 
 
CMD will appear above the search box, right click on it and select Run as administrator.
 
When the Elevated Command Prompt opens copy and paste the command below, then press Enter.
 
findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >"%userprofile%\Desktop\sfcdetails.txt"
 
This will place a new icon on the desktop titled sfcdetails.  Double click on this icon to open 
the CBS log, copy and paste the log in your topic.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 RaveBlack

RaveBlack
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:53 PM

Posted 28 May 2016 - 02:59 PM

Just finished running it. No integrity violations to report.



#4 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:03:53 PM

Posted 29 May 2016 - 08:48 AM

Please download MiniToolBox to your desktop.
 
Right-click on MiniToolBox.exe and select Run as Administrator.
 
You will see an image like the one below.
 
minitoolbox_zps7byuwkla.png
 
Click on the following checkboxes only:
 
• List last 10 Event Viewer log
• List Installed Programs
• List Users, Partitions and Memory size.
• List Minidump Files
 
Click on Go to start the scan.  Once it is finished highlight the text, then copy it and paste it in your topic.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#5 RaveBlack

RaveBlack
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:53 PM

Posted 29 May 2016 - 08:58 AM

MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by Kristy (administrator) on 29-05-2016 at 09:56:51
Running from "C:\Users\Kristy\Contacts\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: p6710f Manufacturer: Hewlett-Packard

Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/29/2016 09:52:23 AM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/29/2016 12:07:12 AM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/28/2016 03:42:51 PM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/27/2016 11:14:38 PM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/26/2016 10:04:39 PM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/25/2016 10:36:13 PM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/25/2016 12:16:39 AM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/23/2016 10:53:01 PM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/22/2016 11:43:18 PM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/22/2016 01:05:43 AM) (Source: HP Client Services) (User: )
Description: HP Client Services could not start due to configuration is not available.

System errors:
=============
Error: (05/29/2016 02:11:41 AM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (05/29/2016 12:08:03 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (05/28/2016 03:47:18 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (05/28/2016 03:47:09 PM) (Source: DCOM) (User: )
Description: {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}

Error: (05/26/2016 10:09:53 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (05/25/2016 10:40:47 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (05/25/2016 10:39:49 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (05/25/2016 10:39:19 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (05/20/2016 12:18:13 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (05/20/2016 12:16:37 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Microsoft Office Sessions:
=========================
Error: (05/29/2016 09:52:23 AM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/29/2016 12:07:12 AM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/28/2016 03:42:51 PM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/27/2016 11:14:38 PM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/26/2016 10:04:39 PM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/25/2016 10:36:13 PM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/25/2016 12:16:39 AM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/23/2016 10:53:01 PM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/22/2016 11:43:18 PM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

Error: (05/22/2016 01:05:43 AM) (Source: HP Client Services)(User: )
Description: HP Client Services could not start due to configuration is not available.

=========================== Installed Programs ============================
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.111 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Agatha Christie - Peril at End House (HKLM-x32\...\WT089362) (Version: 2.2.0.95 - WildTangent) Hidden
AIM 7 (HKLM-x32\...\AIM_7) (Version:  - )
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Amazon MP3 Downloader 1.0.18 (HKCU\...\Amazon MP3 Downloader) (Version: 1.0.18 - Amazon Services LLC)
Amazon Music (HKCU\...\Amazon Amazon Music) (Version: 3.6.0.671 - Amazon Services LLC)
Amazon Music Importer (HKLM-x32\...\{EE54B7D5-57E0-A190-5D10-0982B52DF050}) (Version: 3.0.0 - Amazon Services LLC) Hidden
Amazon Music Importer (HKLM-x32\...\com.amazon.music.uploader) (Version: 3.0.0 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{37FCE154-7F59-74F0-3A35-BF503CEB230B}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9642 - Perfect World Entertainment)
Baldur's Gate™ II - Shadows of Amn™ Bonus CD (HKLM-x32\...\{014585C8-7557-11D4-9ABA-006067325E47}) (Version:  - )
Baldur's Gate™ II - Throne of Bhaal ™ (HKLM-x32\...\{B8C3B479-1716-11D5-968A-0050BA84F5F7}) (Version:  - )
Bejeweled 2 Deluxe (HKLM-x32\...\WT087428) (Version: 2.2.0.95 - WildTangent) Hidden
Belkin N300 Micro USB Wireless Adapter (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.00.0155 - )
Bing Rewards Client Installer (HKLM-x32\...\{61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17}) (Version: 16.0.345.0 - Microsoft Corporation) Hidden
Blackhawk Striker 2 (HKLM-x32\...\WT087328) (Version: 2.2.0.95 - WildTangent) Hidden
Blasterball 3 (HKLM-x32\...\WT089308) (Version: 2.2.0.95 - WildTangent) Hidden
Blio (HKLM-x32\...\{504CC891-B140-4E1B-860B-5E4C1DFBA9E3}) (Version: 2.0.5350 - K-NFB Reading Technology, Inc.)
Bounce Symphony (HKLM-x32\...\WT087330) (Version: 2.2.0.95 - WildTangent) Hidden
Build-a-lot 2 (HKLM-x32\...\WT087335) (Version: 2.2.0.95 - WildTangent) Hidden
Cake Mania (HKLM-x32\...\WT089359) (Version: 2.2.0.95 - WildTangent) Hidden
Canon iP2600 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP2600_series) (Version:  - )
Canon iP2600 series User Registration (HKLM-x32\...\Canon iP2600 series User Registration) (Version:  - )
Canon Utilities Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon Utilities My Printer (HKLM-x32\...\CanonMyPrinter) (Version:  - )
Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
CEP v1.52 (HKLM-x32\...\CEP v1.52_is1) (Version:  - The CEP Team)
ChromecastApp (HKCU\...\{079ede36-133d-44b0-8053-c7c1fa8d2e0d}_is1) (Version: 1.5.1693.0 - Google Inc.)
Chuzzle Deluxe (HKLM-x32\...\WT087453) (Version: 2.2.0.95 - WildTangent) Hidden
CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.3210 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dark UI v3.5 (HKLM-x32\...\Dark UI v3.5_is1) (Version:  - )
DC Universe Online (HKCU\...\SOE-DC Universe Online) (Version: 1.0.3.183 - Sony Online Entertainment)
DC Universe Online Live (HKCU\...\SOE-DC Universe Online Live) (Version:  - Sony Online Entertainment)
Diablo II (HKLM-x32\...\Diablo II) (Version:  - )
Diner Dash 2 Restaurant Rescue (HKLM-x32\...\WT087536) (Version: 2.2.0.95 - WildTangent) Hidden
DLTC Editor Pro (remove only) (HKLM-x32\...\DLTCEP) (Version:  - )
Dora's World Adventure (HKLM-x32\...\WT087343) (Version: 2.2.0.95 - WildTangent) Hidden
Dragon Age Awakening Redesigned (HKCU\...\Dragon Age Awakening Redesigned) (Version:  - )
Dragon Age Awakening Velanna Redesigned© (HKCU\...\Dragon Age Awakening Velanna Redesigned©) (Version:  - )
Dragon Age II (HKLM-x32\...\{F2E23139-3404-4E3C-9855-7724415D62A5}) (Version: 1.04 - Electronic Arts, Inc.)
Dragon Age Redesigned © Morrigan (HKCU\...\Dragon Age Redesigned © Morrigan) (Version:  - )
Dragon Age Redesigned Oghren© (HKCU\...\Dragon Age Redesigned Oghren©) (Version:  - )
Dragon Age Redesigned© (HKCU\...\Dragon Age Redesigned©) (Version:  - )
Dragon Age Redesigned© Sten (HKCU\...\Dragon Age Redesigned© Sten) (Version:  - )
Dragon Age Toolset (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.01 - Electronic Arts, Inc.)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05 - Electronic Arts, Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 3.20.1 - Dropbox, Inc.)
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.2.4412 - Hewlett-Packard) Hidden
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.2.4412 - Hewlett-Packard)
Elrond's MM6 Editor [v3.7] (HKLM-x32\...\Elrond's MM6 Editor [v3.7]) (Version:  - )
Escape Rosecliff Island (HKLM-x32\...\WT087360) (Version: 2.2.0.95 - WildTangent) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Farm Frenzy (HKLM-x32\...\WT089328) (Version: 2.2.0.95 - WildTangent) Hidden
FATE (HKLM-x32\...\WT087361) (Version: 2.2.0.95 - WildTangent) Hidden
Final Drive Nitro (HKLM-x32\...\WT087362) (Version: 2.2.0.95 - WildTangent) Hidden
Gameforge Live 2.0.3 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.3 - Gameforge)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.30.3 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Heroes of Hellas 2 - Olympia (HKLM-x32\...\WT087372) (Version: 2.2.0.95 - WildTangent) Hidden
Heroes of Might and Magic 3 Complete (HKLM-x32\...\{E93C513B-4AEC-4432-86C7-65F82C141D54}) (Version: 1.00.000 - Ubisoft)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.1.5 - WildTangent)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 4.2.4725 - Hewlett-Packard)
HP MediaSmart Music (HKLM-x32\...\InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}) (Version: 4.2.4517 - Hewlett-Packard)
HP MediaSmart Photo (HKLM-x32\...\InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}) (Version: 4.2.4513 - Hewlett-Packard)
HP MediaSmart SmartMenu (HKLM\...\{A40F60B1-F1E1-452E-96A5-FF97F9A2D102}) (Version: 3.1.2.4 - Hewlett-Packard)
HP MediaSmart Video (HKLM-x32\...\InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}) (Version: 4.2.4522 - Hewlett-Packard)
HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{2EA3D6B2-157E-4112-A3AB-BF17E16661C3}) (Version: 1.0.4.0 - Hewlett-Packard)
HP MovieStore (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0.2 - Hewlett-Packard)
HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{53469506-A37E-4314-A9D9-38724EC23A75}) (Version: 8.4.4400.3525 - Hewlett-Packard Company)
HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.0.12844.3519 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{7F2A11F4-EAE8-4325-83EC-E3E99F85169E}) (Version: 10.1.1000 - Hewlett-Packard)
HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.1.6.0 - Hewlett-Packard)
Hulu Desktop (HKCU\...\HuluDesktop) (Version: 0.9.13 - Hulu LLC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.30 - Irfan Skiljan)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Jewel Quest Solitaire 2 (HKLM-x32\...\WT087379) (Version: 2.2.0.95 - WildTangent) Hidden
LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3130 - CyberLink Corp.) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3130 - CyberLink Corp.)
LightScribe System Software (HKLM-x32\...\{FD7F0DB8-0E96-4D64-AD4D-9B5A936AF2A8}) (Version: 1.18.20.1 - LightScribe)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Might and Magic® VI (HKLM-x32\...\Might and Magic® VI) (Version:  - )
Might and Magic® VII (HKLM-x32\...\Might and Magic® VII) (Version:  - )
Morrowind (HKLM-x32\...\{C325F588-D6B1-4A7F-B6A2-914C75DDA348}) (Version:  - )
Morrowind Enchanted Editor (HKLM-x32\...\ST6UNST #1) (Version:  - )
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{B39A6825-EA20-43EA-AB2D-A6BC0298D9A1}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.2.4412 - Hewlett-Packard) Hidden
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.2.4412 - Hewlett-Packard)
Mozilla Firefox 46.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 en-US)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mystery P.I. - The London Caper (HKLM-x32\...\WT089299) (Version: 2.2.0.95 - WildTangent) Hidden
Nettalk 6.7 (HKLM-x32\...\Nettalk_is1) (Version:  - Nicolas Kruse)
Neverwinter (HKLM-x32\...\Neverwinter) (Version:  - Cryptic Studios)
Neverwinter Nights 2 (HKLM-x32\...\{F20C1251-1D0A-4944-B2AE-678581B33B19}) (Version: 1.00.0000 - Obsidian)
Neverwinter Nights Gold Edition (HKLM-x32\...\{A4C10EEF-D26C-410D-82E7-73370C6FD812}) (Version:  - )
NifSkope (remove only) (HKLM-x32\...\NifSkope) (Version:  - )
Norton 360 (HKLM-x32\...\N360) (Version: 22.6.0.142 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
NVIDIA PhysX (HKLM-x32\...\{1C4551A6-4743-4093-91E4-1477CD655043}) (Version: 9.09.0203 - NVIDIA Corporation)
NWN2 - Dark Waters (HKLM-x32\...\NWN2DW) (Version:  - )
PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.9 - PDF Complete, Inc)
Penguins! (HKLM-x32\...\WT087394) (Version: 2.2.0.95 - WildTangent) Hidden
PhotoNow! (HKLM-x32\...\{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.7717 - CyberLink Corp.) Hidden
PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.7717 - CyberLink Corp.)
PictureMover (HKLM-x32\...\{264FE20A-757B-492a-B0C3-4009E2997D8A}) (Version: 3.5.0.33 - Hewlett-Packard Company)
PIXMA Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version:  - )
Plants vs. Zombies (HKLM-x32\...\WT087501) (Version: 2.2.0.95 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (HKLM-x32\...\WT087395) (Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (HKLM-x32\...\WT087396) (Version: 2.2.0.95 - WildTangent) Hidden
Polar Golfer (HKLM-x32\...\WT087397) (Version: 2.2.0.95 - WildTangent) Hidden
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.4329 - CyberLink Corp.) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.4329 - CyberLink Corp.)
PowerDirector (HKLM-x32\...\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3129 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3129 - CyberLink Corp.)
PressReader (HKLM-x32\...\{912CED74-88D3-4C5B-ACB0-13231864975E}) (Version: 5.10.1102.0 -  NewspaperDirect Inc.)
Python 2.5.2 (HKLM-x32\...\{6B976ADF-8AE8-434E-B282-A06C7F624D2F}) (Version: 2.5.2150 - Python Software Foundation)
Python 2.7.2 (HKLM-x32\...\{2E295B5B-1AD4-4d36-97C2-A316084722CF}) (Version: 2.7.2150 - Python Software Foundation)
RAD Video Tools (HKLM-x32\...\RADVideo) (Version:  - )
Ralink 802.11n Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.53.0 - Mediatek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7404 - Realtek Semiconductor Corp.)
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.3219 - CyberLink Corp.) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RIFT (HKCU\...\RIFT) (Version:  - Trion Worlds, Inc.)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TES Construction Set (HKLM-x32\...\{DB3C800B-081B-4146-B4E3-EFB5B77AA913}) (Version:  - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Unity Web Player (HKLM-x32\...\UnityWebPlayer) (Version: 2.5.5b4_50 - Unity Technologies ApS)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version:  - WildTangent) Hidden
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Virtual Families (HKLM-x32\...\WT087414) (Version: 2.2.0.95 - WildTangent) Hidden
Virtual Villagers 4 - The Tree of Life (HKLM-x32\...\WT089307) (Version: 2.2.0.95 - WildTangent) Hidden
Wheel of Fortune 2 (HKLM-x32\...\WT087415) (Version: 2.2.0.95 - WildTangent) Hidden
Wi-Fi MediaConnect (HKLM-x32\...\{AA58346A-A5D7-4659-91D6-38D07345BDCF}) (Version: 1.6.44 - PHILIPS)
WildTangent Games App (HP Games) (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp) (Version: 4.0.10.5 - WildTangent)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 4.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
wxPython 2.8.12.0 (ansi) for Python 2.7 (HKLM-x32\...\wxPython2.8-ansi-py27_is1) (Version: 2.8.12.0-ansi - Total Control Software)
Zeus & Poseidon (HKLM-x32\...\{8043219B-D2C0-4561-90AB-3F1113ED5A87}) (Version:  - )
Zinio Reader 4 (HKLM-x32\...\{465210C4-595A-BD80-44E8-E0457D9D8432}) (Version: 4.0.3184 - Zinio LLC) Hidden
Zinio Reader 4 (HKLM-x32\...\ZinioReader4.9310D8F796442B71068C511E15D70529A702D19D.1) (Version: 4.0.3184 - Zinio LLC)
Zuma Deluxe (HKLM-x32\...\WT087533) (Version: 2.2.0.95 - WildTangent) Hidden

========================= Memory info: ===================================
Percentage of memory in use: 45%
Total physical RAM: 3839.29 MB
Available physical RAM: 2084.17 MB
Total Virtual: 7676.75 MB
Available Virtual: 5863.12 MB

========================= Partitions: =====================================
1 Drive c: (OS) (Fixed) (Total:918.5 GB) (Free:551.92 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:12.91 GB) (Free:1.27 GB) NTFS

========================= Users: ========================================
User accounts for \\KRISTY-HP

Administrator            ASPNET                   Guest                    
Kristy                   

========================= Minidump Files ==================================
No minidump file found


**** End of log ****


Edited by hamluis, 29 May 2016 - 09:49 AM.


#6 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:03:53 PM

Posted 29 May 2016 - 10:42 AM

In your topic in the Am I Infected forum you posted that you were seeing this in the task manager.  Is this where you are seeing now?


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#7 sflatechguy

sflatechguy

  • BC Advisor
  • 2,179 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:53 PM

Posted 29 May 2016 - 11:44 AM

That GUID, 73E709EA-5D93-4B2E-BBB0-99B7938DA9E4, belongs to Microsoft WMI Provider Subsystem Host, and it is used by applications for monitoring purposes. If you go into Event Viewer, can you get the Event ID that is associated with this system error?



#8 RaveBlack

RaveBlack
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:53 PM

Posted 29 May 2016 - 02:18 PM

In your topic in the Am I Infected forum you posted that you were seeing this in the task manager.  Is this where you are seeing now?

Yes. Like I said in the first post here, save for the SYSTEM dllhost.exe not being displayed as running in Task Manager (where it most certainly has been up 'til now), it's exactly like what happened last January.

 

That GUID, 73E709EA-5D93-4B2E-BBB0-99B7938DA9E4, belongs to Microsoft WMI Provider Subsystem Host, and it is used by applications for monitoring purposes. If you go into Event Viewer, can you get the Event ID that is associated with this system error?

Yes, it's 10010. Same for the error associated with F9717507-6651-4EDB-BFF7-AE615179BCCF on the list.



#9 sflatechguy

sflatechguy

  • BC Advisor
  • 2,179 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:53 PM

Posted 29 May 2016 - 03:06 PM

That second GUID is the WinInetBrokerServer. WinInet provides applications with access to protocols such as FTP and HTTP. The BrokerServer is a network application service.

 

Event ID 10010 covers a multitude of issues, but it tends to result from incorrect permissions or bugs in an applications code: https://technet.microsoft.com/en-us/library/cc774175%28v=ws.10%29.aspx

 

However, I noticed you seem to have issues with Windows Update service not starting, and you are getting error messages from the ShellHWDetection service. Per Microsoft: "The Shell Hardware Detection service monitors and provides notification for AutoPlay hardware events. AutoPlay is a feature that detects content such as pictures, music, or video files on removable media and removable devices. AutoPlay then automatically starts applications to play or display that content. This simplifies the use of specialized peripheral devices such as Moving Picture Experts Group (MPEG) Audio Layer-3 (MP3) players and digital photo readers."

 

It seems that despite what SFC reported, there are issues with you system files/permissions/configuration. The ShellHWDetection, wuauserv (Windows Update) and CryptSvc services should be set to Automatic. The BITS (Background Intelligent Transfer Service) should be set to manual. Windows Updates relies on the CryptSvc and BITS, so those need to be up and running as well. If any of these services are stop, start them. You can check them by typing services.msc in the Start menu search bar.



#10 RaveBlack

RaveBlack
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:53 PM

Posted 30 May 2016 - 02:08 AM

That second GUID is the WinInetBrokerServer. WinInet provides applications with access to protocols such as FTP and HTTP. The BrokerServer is a network application service.

 

Event ID 10010 covers a multitude of issues, but it tends to result from incorrect permissions or bugs in an applications code: https://technet.microsoft.com/en-us/library/cc774175%28v=ws.10%29.aspx

 

However, I noticed you seem to have issues with Windows Update service not starting, and you are getting error messages from the ShellHWDetection service. Per Microsoft: "The Shell Hardware Detection service monitors and provides notification for AutoPlay hardware events. AutoPlay is a feature that detects content such as pictures, music, or video files on removable media and removable devices. AutoPlay then automatically starts applications to play or display that content. This simplifies the use of specialized peripheral devices such as Moving Picture Experts Group (MPEG) Audio Layer-3 (MP3) players and digital photo readers."

 

It seems that despite what SFC reported, there are issues with you system files/permissions/configuration. The ShellHWDetection, wuauserv (Windows Update) and CryptSvc services should be set to Automatic. The BITS (Background Intelligent Transfer Service) should be set to manual. Windows Updates relies on the CryptSvc and BITS, so those need to be up and running as well. If any of these services are stop, start them. You can check them by typing services.msc in the Start menu search bar.

I checked the permissions like the link said (I didn't touch anything I found there, since I don't know specifically what I'm s'posed to be looking for there and really didn't want to cause further problems), then I checked the services you specified. They were all up and running, but both Windows Update and BITS were set to Automatic (Delayed). I changed them to what you said here, then I pulled up the Task Manager to see that the SYSTEM-run dllhost.exe had returned, bringing with it an svchost.exe that had also gone missing as well as the Microsoft Distributed Transaction Coordinator Service which I had to Google twice. First to determine just what it was and what it did, then to determine if I actually needed it running. From what I found out about it, I didn't, so I disabled it. (And then had to re-enable it the next morning due to an unrelated error!)

...oh good lord...


Edited by RaveBlack, 31 May 2016 - 01:55 AM.


#11 RaveBlack

RaveBlack
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:53 PM

Posted 31 May 2016 - 02:10 AM

The SYSTEM-run dllhost.exe is still here, thank goodness, but the randomly-appearing username-run dllhost.exe is still randomly appearing. Same legit process and process ID, ProcessExplorer verified it for me again, like it did when it first started randomly showing up again. Command line of C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF} and autostart location of HKLM\System\CurrentControlSet\Services\COMSysApp, same as before. It's not making multiples, either.

This is really driving me nuts and making me paranoid. What in the heck is it doing? Is it safe to ignore?


Edited by RaveBlack, 31 May 2016 - 05:26 AM.


#12 sflatechguy

sflatechguy

  • BC Advisor
  • 2,179 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:53 PM

Posted 31 May 2016 - 08:26 AM

You've got ESET, Norton and Malwarebytes installed. Have they found and quarantined anything?

 

However, it's not a good idea to have multiple AV programs installed. I would say pick one and uninstall the others. Then make sure the signature files are up to date on the one you decided to keep, and run a full scan. If it doesn't fine anything, it's fair to say you're probably safe.



#13 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,264 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:03:53 PM

Posted 31 May 2016 - 10:27 AM

IMPORTANT NOTE: Using more than one anti-virus program is not advisable. Why? The primary concern with doing so is due to Windows resource management and significant conflicts that can arise especially when they are running in real-time protection mode simultaneously. Even if one of them is disabled for use as a stand-alone on demand scanner, it can affect the other and cause conflicts. Anti-virus software components insert themselves deep into the operating systems core where they install kernel mode drivers that load at boot-up regardless of whether real-time protection is enabled or not. Thus, using multiple anti-virus solutions can result in kernel mode conflicts causing system instability, catastrophic crashes, slow performance and waste vital system resources. When actively running in the background while connected to the Internet, each anti-virus may try to update their definition databases at the same time. As the programs compete for resources required to download the necessary files this often can result in sluggish system performance or unresponsive behavior.
 
Credit for this information goes to quietman7.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#14 hamluis

hamluis

    Moderator


  • Moderator
  • 55,235 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:05:53 PM

Posted 31 May 2016 - 12:31 PM

FWIW:  The online scanner version of ESET...does not count as an installed AV scanning continuously.  Malwarebytes is an antimalware program, not an AV.

 

Louis



#15 RaveBlack

RaveBlack
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:53 PM

Posted 31 May 2016 - 10:59 PM

It's indeed the online scanner version. And yep, first thing I did when I noticed this was happening was run scans. They all came back clean.

The SYSTEM-run dllhost.exe looks to have disappeared again, but since nothing catastrophic's happened and Event Viewer hasn't indicated that anything's gone wrong, I'm just going to let it all be. I let my anxieties get the best of me and that's not healthy.

I'm thinking it's about time to send this seven year-old computer into retirement before something really does go wrong, so while it's still working I'm going to start looking for a new one. Thanks, everyone.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users