Solved

after removing malware RUNDLL error

Posted on 2013-05-21
7
1,036 Views
Last Modified: 2013-06-01
After removing the insidious "The FBI has your computer locked ....to unlock your computer pay $300 via GreenPak" all is working well except on startup I am getting an error message
"RUNDLL
Error loading C:\DOCUME~1\ALLUSE~1\APPLIC~1\boo2.dat
The specified module could not be found."
0
Comment
Question by:atf3doc
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 37

Expert Comment

by:Gerwin Jansen
ID: 39185498
That is probably because the malware cannot load anymore as it was removed.

Have a look with msconfig, TAB 'Startup' and look for an entry that has rundll and that ...boo2.dat in the command, then disable that startup entry.
0
 
LVL 26

Accepted Solution

by:
Thomas Zucker-Scharff earned 400 total points
ID: 39185504
or if you have autoruns on your system use that to do the same thing.
0
 

Author Comment

by:atf3doc
ID: 39185527
msconfig....no dll or boo2 listed. I unchecked registry booster2, just to see if that was it.
                    still get the error.
autoruns....am downloading it now..will install and try,,will advise
atf3doc
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 
LVL 26

Expert Comment

by:Thomas Zucker-Scharff
ID: 39185547
make sure you check the choice to show microsoft items.
0
 
LVL 37

Assisted Solution

by:Gerwin Jansen
Gerwin Jansen earned 100 total points
ID: 39185617
Yes, autoruns or hijackthis will show you the entry. Let us know what you find.
0
 

Author Comment

by:atf3doc
ID: 39185693
autoruns rules!!! Showed the error exacly as it was written...unchecked it and error message gone..hooray! Thanks.
0
 

Expert Comment

by:thebaldwonder3001
ID: 39213075
Thanks gerwinjansen!! It took me 2 days to finally find what was causing the rundll pop-up when the machine starts up. Checked msconfig startup tab and BINGO!
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

The password reset disk is often mentioned as the best solution to deal with the lost Windows password problem. In Windows 2008, 7, Vista and XP, a password reset disk can be easily created. But besides Windows 7/Vista/XP, Windows Server 2008 and ot…
There are many reasons malware will stay around and continue to grow as a business.  The biggest reason is the expanding customer base.  More than 40% of people who are infected with ransomware, pay the ransom.  That makes ransomware a multi-million…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now