Solved

RogueKiller hangs on Checking process - dllhost.exe

Posted on 2014-01-21
13
3,219 Views
Last Modified: 2014-02-03
I am working on a computer that has been infected, this time with PUPs.  I was able to do a System Restore for before Re-markit and others downloaded.  I've run Rkill, AdwCleaner, JRT, MBAM, SAS and Hitman Pro, no big issues.  I am attempting to run RogueKiller but it hangs on Checking processes - dllhost.exe

I have run RogueKiller on this computer before with no issue.  Any ideas?
Thanks,
Mags
0
Comment
Question by:MagsMcKinley14
  • 7
  • 5
13 Comments
 
LVL 18

Accepted Solution

by:
web_tracker earned 250 total points
ID: 39799059
Try running it in safemode, or try a different download of the application. I use rogue killer often as part of the malware removal tool in the IT department at the university.  I have issues when the app froze up taking longer to scan than normal. I either tried rebooting the system or running it in safemode, or redownloading the app and trying to scan again.
0
 
LVL 92

Assisted Solution

by:nobus
nobus earned 250 total points
ID: 39799304
try running sfc, or a repair; your OS looks corrupted :
http://www.sevenforums.com/tutorials/681-startup-repair.html            REPAIR
http://www.sevenforums.com/tutorials/1538-sfc-scannow-command-system-file-checker.html         SFC
0
 

Author Comment

by:MagsMcKinley14
ID: 39800374
Thanks guys...your help is always appreciated.  I will be able to access her computer in a day or so...I'll be in touch!
Mags
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 

Author Comment

by:MagsMcKinley14
ID: 39816725
Hoping to get on her computer tomorrow!
0
 

Author Closing Comment

by:MagsMcKinley14
ID: 39826634
Ran sfc /scannow with no issues, ran RogueKiller in Safemode then in Normal mode. It found these issues -

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> FOUND
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> FOUND

Fixed and made sure host and proxy were good.

Her computer is running well!  Thanks guys!
Mags
0
 
LVL 92

Expert Comment

by:nobus
ID: 39827334
you should still run it in normal mode
0
 

Author Comment

by:MagsMcKinley14
ID: 39827869
Thanks nobus...as I stated above I did...the scan ran without issue.  Any other suggestions??
I appreciate all of your assistance!
Mags
0
 
LVL 92

Expert Comment

by:nobus
ID: 39827884
do i undestand you correct?  you posted 2 registry entries it found; now you say "the scan ran without issue" ???
0
 

Author Comment

by:MagsMcKinley14
ID: 39827906
Nobus maybe I am not expressing myself correctly and/or I may not be running RogueKiller correctly.

I tried running RogueKiller on her computer and it would not complete the initial scan.  I ran sfc /scannow which showed no errors.  I ran it 3 times.

I then started her computer in safe-mode, ran RogueKiller and it found then deleted two registry issues.

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> DELETED
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> DELETED

I then restarted her computer in normal mode and re-ran RogueKiller and it found no issues and the host was set correctly.

Was this done correctly?
0
 
LVL 92

Expert Comment

by:nobus
ID: 39828881
yes, and my ans  wer to that was : "you should still run it in normal mode" = Roguekiller
0
 

Author Comment

by:MagsMcKinley14
ID: 39829904
Thanks Nobus!  Your assistance and confirmation were greatly appreciated!
Mags
0
 
LVL 92

Expert Comment

by:nobus
ID: 39830038
i try to please everyone; but i don't succeed always
0
 

Author Comment

by:MagsMcKinley14
ID: 39830192
You did this time...thanks!
Mags
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

By default the complete memory dump option is disabled in windows . If we want to enable the complete memory dump for a diagnostic purpose, we have a solution for it. here we are using the registry method to enable this.
I've been an avid user and supporter of Malwarebytes Premium Version 2.x for years. It's an excellent product that runs alongside just about any Anti-Virus application without issues. It seems to have an uncanny ability to pick up many things that A…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question