Tech Support Forum banner
Cancel

rundll.exe

2943 Views 15 Replies 4 Participants Last post by  samual
S
hi, iv got rundll.exe run as an app, googled it but its 50-50 on weather its a virus ot legite can anyone advise.
Save
Like
Status
Not open for further replies.
1 - 16 of 16 Posts
R
Hey,

If you're not running any of the Win 9X family products, I would be inclined to think that it's a virus.

Regards,

Brandon
Save
Like
S
wat is win 9, and also its not in my task manager i found it in my firewall in applications, how do i locate it in my computer.
Save
Like
nickster_uk
Win 9X refers to Windows 95/98.

Have you tried using Xp's search feature to look for rundll?
Save
Like
S
yes i have no luck
Save
Like
nickster_uk
Ok..probably a good idea to check out the HJT forum. Please read the following thread first as it contains some good advice:
http://www.techsupportforum.com/sec...lease-read-before-posting-hijackthis-log.html
Save
Like
S
rundll32.exe is a process which executes DLL's and places their libraries into the memory, so they can be used more efficiently by applications. This program is important for the stable and secure running of your computer and should not be terminated. this is from the process library.com, is it a bug ?
Save
Like
S
Scanned File


Status

C:\System Volume Information\_restore{2E5BC0E5-2B38-4761-AE38-96706F6F67AC}\RP5\A0001149.COM


Infected with: BehavesLike:Win32.FileInfector

C:\System Volume Information\_restore{2E5BC0E5-2B38-4761-AE38-96706F6F67AC}\RP5\A0001149.COM


Disinfection failed

C:\System Volume Information\_restore{2E5BC0E5-2B38-4761-AE38-96706F6F67AC}\RP5\A0001149.COM


Deleted

C:\System Volume Information\_restore{2E5BC0E5-2B38-4761-AE38-96706F6F67AC}\RP5\A0001150.EXE


Infected with: BehavesLike:Win32.FileInfector

C:\System Volume Information\_restore{2E5BC0E5-2B38-4761-AE38-96706F6F67AC}\RP5\A0001150.EXE


Disinfection failed

C:\System Volume Information\_restore{2E5BC0E5-2B38-4761-AE38-96706F6F67AC}\RP5\A0001150.EXE


Deleted

C:\System Volume Information\_restore{2E5BC0E5-2B38-4761-AE38-96706F6F67AC}\RP6\A0001691.COM


Infected with: BehavesLike:Win32.FileInfector
See less See more
Save
Like
nickster_uk
Rundll32.exe is a valid XP file but rundll.exe isn't...it's usually a sign of a backdoor infection.

The log files you posted highlight that your system restore files have become infected so it will be a good idea to get your machien clean then clear the System Restore points then create a clean entry.
Save
Like
S
sorry some where down the line i forgot to ad 32 to it ,as u see i still had some problems which i cant understand only last week i ran smit threw it and turned off my system restore , also spy doc didnt pick anything up as escan, avast, mcafee,avg, abit strange.
Save
Like
Geekgirl
Just to be safe, Look over the First Steps at Removing Malware , then post a HJT log in the HiJackThisLog Help Forum
Save
Like
S
i ran in safe mode and it was black instead off blue is thay normal.
Save
Like
Geekgirl
i ran in safe mode and it was black instead off blue is thay normal.
Click to expand...
What are you asking? What was Black instead of Blue? If your referring to the screen color, yes it is black. Minimum drivers are loaded when you enter Safe Mode. Safe mode is the Windows diagnostics mode. When you start the computer in Safe mode, only the specific components that are needed to run the operating system are loaded.
Safe mode also loads a standard video driver at a low resolution. Due to the low resolution, your programs and the Windows desktop may look different than usual and the desktop icons may have moved to different locations on the desktop.
Save
Like
S
also when it loads up in safe mode it gives me the option to go in as admin, or normalwhy is this, there are no pass words just one acount wich is my acount admin,
Save
Like
nickster_uk
It's referring to the default admin account 'Administrator'....most machines have that, it's nothing to worry about.
Save
Like
S
i ran a boot scan with avast found pskavs.dll win32ctx deletedit hope all is ok. also spyware doc hasnt updated in 4 days states system needs attention when i update is states im up to date.
Save
Like
1 - 16 of 16 Posts
Status
Not open for further replies.
Tech Support Forum
A forum community dedicated to tech experts and enthusiasts. Come join the discussion about articles, computer security, Mac, Microsoft, Linux, hardware, networking, gaming, reviews, accessories, and more!
Full Forum Listing
Explore Our Forums
Windows XP Support Windows 7 , Windows Vista Support Motherboards, Bios|UEFI & CPU Networking Support Laptop Support
Top