You are here: Home > Muliple RunDLL32.exe’s in Task Manager? That Dern Conficker…

Muliple RunDLL32.exe’s in Task Manager? That Dern Conficker…

I ran up against a little issue in a small 10 person office that sorta stumped me for a few hours.  At random times during the day client pc’s would spawn dozens of rundll32.exe processes and effectively render the pc useless (it sucked up all the ram).

The cause?

These boxes were infected with Conficker at one point which created dozens of scheduled tasks.  These scheduled tasks spawn all those RunDll32.exe’s.  I simply deleted the tasks and have not seen a recurrence of all those RunDll32.exe processes.

Also, sorry I haven’t posted much this week, I had a nasty flu.



, , ,

  • FuzzyBanana92

    I see… another victim of swine flu…

    On a more on topic: even though you stopped the processes, the conficker would still be on the computers… just not active

    correct?

  • ryan

    Matt what did you use to clean up the PC? and what anti virus did you install on their PC’s?

  • malwarekilla

    @ryan – I used Vipre Enterprise and GMER. They were on McAfee Enterprise.

  • ryan

    Looks like mcafee fails I hope their 2010 products catch up even avast has gotten better than mcafee 4.8 and 5.0.

  • kahner

    thanks, that was exactly what my problem was. my whole office got hit with conficker a couple years ago, but this is the only computer where I saw this issue.

  • Pepe

    so easy…so useless…


Remove-Malware Traffic Stats