svchost.exe problem - not running any services

Page 2 of 2 FirstFirst 12

  1. goluxor
    Posts : 6
    windows 7 pro
    Thread Starter
       New #11

    OEM said:
    Glad to hear it sounds like you've found the culprit and abolished it from your PC.

    I just wanted to add and ask, when running Process Explorer, did you run it as an administrator?

    Right click Procexp and choose run as admin, ...then click "yes" for the uac pop-up. It does make a difference in the amount of info shown.

    Good Luck, and I hope the malware is gone for good.

    BTW, I checked it at viruswatchlite (Kaspersky), and it didn't have it listed either so it does seem to be something new as there pretty good with tracking, listing, blocking malware. I entered the name of your offending malware into the filter and it came up with nothing. So glad you got it, good job.

    Kaspersky Viruswatchlite
    Thanks for the tip. I remember I did run Process Explorer as "run as admin" at least once (I think on accident), but I don't actually remember noticing anything different unfortunately.

    Hopefully this is the end of that virus, but I hope others can benefit from this thread.
      My Computer
    Quote Quote

  3. OEM
    Posts : 617
    OS3.5
       New #12

    Just wanted to show the difference in running it in limited vs. admin. Its making my images a lier out of me now, as I just opened it up again with limited user permissions and some apps were described. I'd imagine it would make a difference when working with the processes. There are tools within Procexe that allow you to kill processes and if in a limited user setting, it might not let you do certain things. I'm for sure they're others that could tell you more about procexp than I, so I'll leave it at that. lol

    Main thing is your problem is fixed and all this talk about procexp, should be started on another thread (thats my fault, ...its always my fault lol).

    Attachment 84882
    Last edited by OEM; 01 Jan 2011 at 18:44.
      My Computer
    Quote Quote

  4. Jacee
    Posts : 8,608
    Windows 7 Ultimate 32bit SP1
       New #13

    download TFC by Old Timer TFC - Temp File Cleaner by OldTimer -> Anti-malware Tools -> Downloads and save it to your desktop.
    Save any unsaved work. TFC will close ALL open programs including your browser!
    Double-click on TFC.exe to run it. If you are using Vista/Windows 7 right-click on the file and choose Run As Administrator.

    Click the Start button to begin the cleaning process and let it run uninterrupted to completion.

    Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.

    TFC (Temp File Cleaner) will clear out all temp folders for all user accounts (temp, IE temp, java, FF, Opera, Chrome, Safari), including Administrator, All Users, LocalService, NetworkService, and any other accounts in the user folder. It also cleans out the %systemroot%\temp folder and checks for .tmp files in the %systemdrive% root folder, %systemroot%, and the system32 folder (both 32bit and 64bit on 64bit OSs). It shows the amount removed for each location found (in bytes) and the total removed (in MB). Before running, it will stop Explorer and all other running apps. When finished, if a reboot is required the user must reboot to finish clearing any in-use temp files.

    TFC only cleans temp folders. TFC will not clean URL history, prefetch, or cookies. Depending on how often someone cleans their temp folders, their system hardware, and how many accounts are present, it can take anywhere from a few seconds to a minute or more. TFC will completely clear all temp files where other temp file cleaners may fail. TFC requires a reboot immediately after running. Be sure to save any unsaved work before running TFC.

    Now, set a clean system restore point!
      My Computer
    Quote Quote

  6. rob098
    Posts : 3
    vista 32
       New #14

    me too!


    Hi

    I just thought I'd see if anyone has any more information on this. My vista laptop has started suffereing from the same problem (namely svchost.exe taking up 50% CPU and having no associated .dll services running under it.) It also runs under my user name rather than SYSTEM, LOCAL or NETWORK service.

    I fear it may be a virus, but i get clean scans from AVG, malwarebytes and avira.
    Wonder if its a mutation on the original posters issue?

    Many thanks
    Rob
      My Computer
    Quote Quote

  7. Silas
    Posts : 2
    Windows 7 64 bit.
       New #15

    Hi everyone (I hope Goluxor sees this..)

    I think I am having the same problem, I have a svchost.exe taking up a lot of my CPU usage and it has no services operating under it. Closing it or ending the process helps only momentarily as another svchost.exe starts running in its place after a few minutes which also has no services running under it and the PID is different.
    I want Goluxor to see the as he/she is the one who solved this issue, so I am really curious what scans you ran and what 'definitions' you used to find this. I know its been a while since you had this issue but if there's anything you remember I'm sure it would help

    Cheers,
    Silas
      My Computer
    Quote Quote

  8. Silas
    Posts : 2
    Windows 7 64 bit.
       New #16

    Ok I have an update on my issue.
    I ran Malwarebytes anti-malware and it found something I think. Through out the scan and now afterwards, the svchost.exe that has been causing problems has been repeatedly closed down by host process windows services with these details:

    Problem signature:
    Problem Event Name: BEX
    Application Name: svchost.exe
    Application Version: 6.1.7600.16385
    Application Timestamp: 4a5bc100
    Fault Module Name: StackHash_e8ad
    Fault Module Version: 0.0.0.0
    Fault Module Timestamp: 00000000
    Exception Offset: 74dec9f1
    Exception Code: c0000005
    Exception Data: 00000008
    OS Version: 6.1.7601.2.1.0.768.3
    Locale ID: 3081
    Additional Information 1: e8ad
    Additional Information 2: e8adce1c2b9e7be834b4063ac3c53863
    Additional Information 3: e8ad
    Additional Information 4: e8adce1c2b9e7be834b4063ac3c53863

    ----

    Each time host process does this Malwarebytes has notified me that it has quarantined a threat. This threat is called Trojan.0Access from C:\$RECYCLE.BIN, and the filename is ALWAYS the same.
    I have said that this particular svchost.exe re-appears after a short time after closure and due to that I now have over 30 of these Trojans in quarantine.
    I am not sure what to do next as it just seems to duplicate itself in a never ending cycle of deleting this file...The RECYCLE.BIN file is empty when I went to look into it.
    Does anyone have any idea about what I can do here???

    Many thanks,

    Silas
      My Computer
    Quote Quote

 
Page 2 of 2 FirstFirst 12

  Related Discussions
:) Have 14 svchost's running, why? & what do they mean? What are they controlling "above the code & hdwe?" I chk'd out the tutorials on svchost host as to what svcs I 'do not need or can stop to free up mem to no avail. Just looking for some "guidance" like if you have BP 175/120 you have...
Hi, I am problem with DNS services within my laptop running Windows 7 Pro - x64; Network adapters: Realtek PCIe GBE Family Controller, Intel(R) Centrino(R) Wireless-N 1030. 1.Followed steps below (as per some article) but no avail: netsh int ipv4 reset netsh winsock reset ipconfig...
Hello everyone, Today, my computer just finished installing updates, and was waiting for me at the user selection/log in screen when I checked on it. I powered it off by holding the power button down to change some BIOS settings. (In the end, I did not save any changes to the BIOS, so I can rule...
Many svchost.exe running, plz help soon.
in Performance & Maintenance

Hi to all,, the installed windows seven is much older and sick, that's why I install a fresh copy of windows seven today, its work fine,, but when I open the task manager and its Process tab, its full of services specially svchost.exe. although I didn't install too many applications. I just...
How to See Services Running Under svchost.exe Process in Windows 7 Microsoft defines svchost.exe as a generic host process name for services that run from dynamic link libraries. This will show you how to identify what services are running under a single process of svchost.exe. Here's...
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 09:37.
Find Us