?
Solved

RogueKiller hangs on Checking process - dllhost.exe

Posted on 2014-01-21
13
Medium Priority
?
3,303 Views
Last Modified: 2014-02-03
I am working on a computer that has been infected, this time with PUPs.  I was able to do a System Restore for before Re-markit and others downloaded.  I've run Rkill, AdwCleaner, JRT, MBAM, SAS and Hitman Pro, no big issues.  I am attempting to run RogueKiller but it hangs on Checking processes - dllhost.exe

I have run RogueKiller on this computer before with no issue.  Any ideas?
Thanks,
Mags
0
Comment
Question by:Mags
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 5
13 Comments
 
LVL 18

Accepted Solution

by:
web_tracker earned 1000 total points
ID: 39799059
Try running it in safemode, or try a different download of the application. I use rogue killer often as part of the malware removal tool in the IT department at the university.  I have issues when the app froze up taking longer to scan than normal. I either tried rebooting the system or running it in safemode, or redownloading the app and trying to scan again.
0
 
LVL 92

Assisted Solution

by:nobus
nobus earned 1000 total points
ID: 39799304
try running sfc, or a repair; your OS looks corrupted :
http://www.sevenforums.com/tutorials/681-startup-repair.html            REPAIR
http://www.sevenforums.com/tutorials/1538-sfc-scannow-command-system-file-checker.html         SFC
0
 

Author Comment

by:Mags
ID: 39800374
Thanks guys...your help is always appreciated.  I will be able to access her computer in a day or so...I'll be in touch!
Mags
0
Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

 

Author Comment

by:Mags
ID: 39816725
Hoping to get on her computer tomorrow!
0
 

Author Closing Comment

by:Mags
ID: 39826634
Ran sfc /scannow with no issues, ran RogueKiller in Safemode then in Normal mode. It found these issues -

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> FOUND
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> FOUND

Fixed and made sure host and proxy were good.

Her computer is running well!  Thanks guys!
Mags
0
 
LVL 92

Expert Comment

by:nobus
ID: 39827334
you should still run it in normal mode
0
 

Author Comment

by:Mags
ID: 39827869
Thanks nobus...as I stated above I did...the scan ran without issue.  Any other suggestions??
I appreciate all of your assistance!
Mags
0
 
LVL 92

Expert Comment

by:nobus
ID: 39827884
do i undestand you correct?  you posted 2 registry entries it found; now you say "the scan ran without issue" ???
0
 

Author Comment

by:Mags
ID: 39827906
Nobus maybe I am not expressing myself correctly and/or I may not be running RogueKiller correctly.

I tried running RogueKiller on her computer and it would not complete the initial scan.  I ran sfc /scannow which showed no errors.  I ran it 3 times.

I then started her computer in safe-mode, ran RogueKiller and it found then deleted two registry issues.

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> DELETED
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> DELETED

I then restarted her computer in normal mode and re-ran RogueKiller and it found no issues and the host was set correctly.

Was this done correctly?
0
 
LVL 92

Expert Comment

by:nobus
ID: 39828881
yes, and my ans  wer to that was : "you should still run it in normal mode" = Roguekiller
0
 

Author Comment

by:Mags
ID: 39829904
Thanks Nobus!  Your assistance and confirmation were greatly appreciated!
Mags
0
 
LVL 92

Expert Comment

by:nobus
ID: 39830038
i try to please everyone; but i don't succeed always
0
 

Author Comment

by:Mags
ID: 39830192
You did this time...thanks!
Mags
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
The recent Petya-like ransomware attack served a big blow to hundreds of banks, corporations and government offices The Acronis blog takes a closer look at this damaging worm to see what’s behind it – and offers up tips on how you can safeguard your…
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…
The viewer will learn how to successfully download and install the SARDU utility on Windows 7, without downloading adware.
Suggested Courses
Course of the Month10 days, 3 hours left to enroll

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question