Normal Webroot scans has not pick up the com Surrogate DLLHOST issue which come from a virus of some sorts. Does anyone know of a fix?
Page 1 / 1
Hello bheinze,
Welcome to the Community,
Please read the following about PUAs and notice you can issue a Support Ticket free of charge.
Welcome to the Community!
Please follow these instructions below!
What you are seeing and describing is what we on the Community refer to as a PUA. (Potentially Unwanted Application)These are very annoying at best in that they cause pop-us, redirect your browser home page, and other behavior that may slow down the computer and direct ads your way, but they are not actually doing anything bad like damaging files or stealing information. Often they are installed intentionally by you the user as browser add-ons for various tasks such as quick search tools.. but they also come with the result of added annoying pop-ups and ads. Other times they 'piggy back' with other software that you installed, or try to 'sneak' onto your system entirely.
WSA does detect and remove many PUA's, and more are being added, but WSA does not detect all of them. A simple browser add-on with PUA behavior that is easy to identify and easy to remove is not likely to be detected and removed by WSA. Those that are intentionally difficult to locate and remove are. Please see THIS LINK for more information regarding Webroot's stance on these annoying programs.
The best thing to do is to submit a Trouble Ticket and ask Webroot Support to take a look and remove these for you. There is NO CHARGE for this for valid WSA license holder.
Also, we have had a lot of discussion regarding these recently, and I have posted an Idea for Webroot to consider asking them to increase PUA detection. The more users that need help removing a particular PUA the more likely and faster that PUA will be added to detection.
I hope this helps!
Best Regards,
Welcome to the Community,
Please read the following about PUAs and notice you can issue a Support Ticket free of charge.
Welcome to the Community!
Please follow these instructions below!
What you are seeing and describing is what we on the Community refer to as a PUA. (Potentially Unwanted Application)These are very annoying at best in that they cause pop-us, redirect your browser home page, and other behavior that may slow down the computer and direct ads your way, but they are not actually doing anything bad like damaging files or stealing information. Often they are installed intentionally by you the user as browser add-ons for various tasks such as quick search tools.. but they also come with the result of added annoying pop-ups and ads. Other times they 'piggy back' with other software that you installed, or try to 'sneak' onto your system entirely.
WSA does detect and remove many PUA's, and more are being added, but WSA does not detect all of them. A simple browser add-on with PUA behavior that is easy to identify and easy to remove is not likely to be detected and removed by WSA. Those that are intentionally difficult to locate and remove are. Please see THIS LINK for more information regarding Webroot's stance on these annoying programs.
The best thing to do is to submit a Trouble Ticket and ask Webroot Support to take a look and remove these for you. There is NO CHARGE for this for valid WSA license holder.
Also, we have had a lot of discussion regarding these recently, and I have posted an Idea for Webroot to consider asking them to increase PUA detection. The more users that need help removing a particular PUA the more likely and faster that PUA will be added to detection.
I hope this helps!
Best Regards,
If I can step in to add just a little bit to what Sherry said above: DLLhost.exe is a normal and essential Windows file, however there are indeed a number of virus/malware programs that use that file name to try to remain hidden.
If you see only one copy of DLLHost running, it may well NOT be malware. If, however, there are multiple copies running, and one or more is using a large amount of CPU and memory resources, there is indeed a chance that there is something there that should not be.
If you have any doubts, it is of course best to be safe, and so refer back to what Sherry said above 😉
If you see only one copy of DLLHost running, it may well NOT be malware. If, however, there are multiple copies running, and one or more is using a large amount of CPU and memory resources, there is indeed a chance that there is something there that should not be.
If you have any doubts, it is of course best to be safe, and so refer back to what Sherry said above 😉
Reply
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.