Solved

after removing malware RUNDLL error

Posted on 2013-05-21
7
1,037 Views
Last Modified: 2013-06-01
After removing the insidious "The FBI has your computer locked ....to unlock your computer pay $300 via GreenPak" all is working well except on startup I am getting an error message
"RUNDLL
Error loading C:\DOCUME~1\ALLUSE~1\APPLIC~1\boo2.dat
The specified module could not be found."
0
Comment
Question by:atf3doc
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 37

Expert Comment

by:Gerwin Jansen
ID: 39185498
That is probably because the malware cannot load anymore as it was removed.

Have a look with msconfig, TAB 'Startup' and look for an entry that has rundll and that ...boo2.dat in the command, then disable that startup entry.
0
 
LVL 26

Accepted Solution

by:
Thomas Zucker-Scharff earned 400 total points
ID: 39185504
or if you have autoruns on your system use that to do the same thing.
0
 

Author Comment

by:atf3doc
ID: 39185527
msconfig....no dll or boo2 listed. I unchecked registry booster2, just to see if that was it.
                    still get the error.
autoruns....am downloading it now..will install and try,,will advise
atf3doc
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 26

Expert Comment

by:Thomas Zucker-Scharff
ID: 39185547
make sure you check the choice to show microsoft items.
0
 
LVL 37

Assisted Solution

by:Gerwin Jansen
Gerwin Jansen earned 100 total points
ID: 39185617
Yes, autoruns or hijackthis will show you the entry. Let us know what you find.
0
 

Author Comment

by:atf3doc
ID: 39185693
autoruns rules!!! Showed the error exacly as it was written...unchecked it and error message gone..hooray! Thanks.
0
 

Expert Comment

by:thebaldwonder3001
ID: 39213075
Thanks gerwinjansen!! It took me 2 days to finally find what was causing the rundll pop-up when the machine starts up. Checked msconfig startup tab and BINGO!
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

To Remove Security Suite for Windows Malware from a Windows XP Machine:  Restart computer in Safe Mode (to do this see http://tinyurl.com/me78p) Login as Administrator Go to My Computer /Tools/ Folder Options/ View/  check mark the selectio…
Ever notice how you can't use a new drive in Windows without having Windows assigning a Disk Signature?  Ever have a signature collision problem (especially with Virtual Machines?)  This article is intended to help you understand what's going on and…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now