Anti-Spy.Info
Anti-Spy.Info > File library > dllhost.exe

Information about dllhost.exe file


File: dllhost.exe
Name: DCOM DLL host process
Product: Windows
Manufacturer: Microsoft
Risk factor (Virus/Trojan/Spyware): Rating

The COM+ hosting process controls processes in the Internet Information Services (IIS) and is used by many programs. It loads .NET Runtime for example. There can be multiple instances of DLLhost.exe.

Note: The dllhost.exe file file should appear only the C:\Windows\System32\ folder. If you happen to find this file in a different folder, it is possible that your dllhost.exe is in reality a malicious file. Many trojans and viruses try to cloak their real identity by using the names of legitimate files. Any time that you encounter a suspicious process, you should verify the digital signature and the file path, for example using Anti-Spy.Info.

Virus with same name:
Worm/Nachi.A.1 - antivir.de

User feedback

There were 221 user requests for that file. 15 users classify it as harmless. 5 users classify it as neutral. 3 users considered the file to be suspicious. 9 users classify it as bad and recommend to delete dllhost.exe. 4 users didn't classify it ("don't know").

RatingOpinionFrom
RatingWindows DCOM DLL Host Process Alex
Ratingmemmory virus at this level what to do
RatingASP development  link for more info Bhagawan das
Ratingon web server 8 instances loaded using more then 200mb of memory caused server to run very slow and drop connections
RatingConsumes CPU resources to almost 100% but seems to do nothing. Must kill the process to get the server to respond properly again. The process re-spawns almost immediately.
RatingDot Net Framework Anonymous
Rating Matthias
RatingDuring the installation of Microsoft .NET Framework 1.1 Service Pack 1, ZoneAlarm firewall alerted me that dllhost.exe was trying to connect to the internet and it is a known malicious program. AVG6 scan found nothing. Andy
Ratinglegitimite part of windows update, if located in c:\windows\system32. But in c:\windows\system32\wins it can signal a worm. sprite
RatingAlso asked me during .NET Framework 1.1 installation Eric
RatingThis file is loaded in the windows\system32 directory and is for the .net framework. However when located inthe windows\system 32\wins directory it is a virus.
Ratingintalls with service pack 2 -=ΞΩΔΡΞ=-™
RatingIts a known malicious file. It calls upon other variants it can automatically download from the internet, to rummage more intently through your files for passwords, credit card numbers, and who knows what else. It can automatically call upon variants from the internet if they are needed. After doing this it emails all of the source that its gathered to various random emails ALL located in Kuwait and Russia. This is all we know about it at the moment we will try to get back to you with more.  link for more info Edward Shaw
RatingThat it slow down your interconnection jim
Ratingdllhost.exe is a Windows DCOM DLL Host Process it run web applications dll based with IIS. Stop. No virus, everything can be a virus, notepad.exe also! Palnus
RatingThis file produces a surrogate process in which to host COM+ applications, and is provided by Component Services in Windows 2000, Windows XP and Windows 2003 Server. COM+ allow for the development and use of distributed applications  link for more info Allistair Lomax MCSD
RatingIt came out of no where in my proces list, never saw it before. _XC_
RatingDllhost executes dll's. It is not malicious by itself - it is the dll's it hosts that are the problem. If it is hosting a malicious dll then it is malicious. Donovan
RatingAll applications on computer freeze up, CPU maxed out, couldn't do anything, even Ctrl-Alt-Del took minutes to respond! Did an internal search and found the file in the directory it's apparently supposed to be stored in, also found another associated file under c:\windows\Prefetch called "DLLHOST.EXE-2B8A63A0.pf. Scanned both files with Kaspersky Antivirus Personal Pro TheBeast
Ratingdllhost.exe provides the necessary hooks to allow existing COM DLLs to behave as a local (or remote) server by wrapping them into a surrogate process. The dllhost.exe utility will load COM-based DLLs and expose their functionality from a distinct process, leaving the COM servers code base unaltered (no need to change and recompile the source code). I used it for some software projects. Michael
RatingHigh memory usage when viewed in Task manager. Sus and Web hosting service stopped and dllhost.exe went down to reasonable memory usage duggy
RatingConsumes CPU resources to almost 100% but seems to do nothing. Must kill the process to get the server to respond properly again. The process re-spawns almost immediately Momo
RatingIt slows down Interconnection S. Samad Khokhar
Ratingtwo instances indeed came with "Internet Information Services (IIS)" (win2k here) along with 2 other processes. if you don't want to run a site from your computer (for an intranet for example) uninstall that through the windows-components screen (a tab in software settings) Theobald Kafé
RatingDie dllhost.exe (dynamic link libary) gehört zu Windows -oder zu dessen Server. Die dllhost.exe ist eine Standapplikation für Webserver. DataFighter
RatingIt is present since I installed my WEB server demonia987
RatingPart of DCOM needed if you want to access various ActiveX controls, can be used as a pathway for viruses, but by itself it isn't Blackbomb
Ratingwhile running long ASP scripts,DLL HOST.exe is taking upto 99% CPU Pavithra
RatingSlow down the system running same time with ''legal'' dllhost.exe (user name = system)
If you know more about dllhost.exe, so post it here.
Your opinion:
Your info
about that file:
Website with further details:
Your Name:
 
 
Source

Search Results for dllhost.exe in


Other files

csrss.exe ctfmon.exe dllhost.exe internat.exe kernel32.dll msmsgs.exe regsvc.exe spoolsv.exe svchost.exe system winlogon.exe wisptis.exe wmiexe.exe wscntfy.exe [all]
© Anti-Spy.Info