Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Ransomware infection using Windows 7 Rundll32?

01 Jun 2013   #11

Windows 7 Home Premium


Does the manner of infection that I described in my original post sound familiar? Have you heard of using register keys, rundll32, and a .dat file to install ransomware?
There are several versions of ransomware. What you describe above is not uncommon.

We need to see the reports issued by HitmanPro.KickStart, and Malwarebytes Anti-Malware.

Also, please download RogueKiller:
Download RogueKiller (Official website)
Select the x64 version download.
Save to the Desktop.

Close all windows and browsers.
Right-click and select: Run as Administrator

At the program console, wait for the prescan to finish. (Under Status, it says: Prescan finished.)

Press: SCAN

When done, a report opens on the Desktop: RKreport.txt
Please provide the RKreport.txt (Mode: Scan) in your reply.

My System SpecsSystem Spec

 Ransomware infection using Windows 7 Rundll32?

Thread Tools

Similar help and support threads
Thread Forum
Windows 7- rundll32.exe 50% CPU load
Hi there. I got a problem, i got two rundll32.exe processes, but one when i'm start games, and other, goes crazy and using 50% of my CPU. I got windows 7 two days! And why this proces is not automaticialy killed when i shutdown game? After shutting down game, process stay and use 50% of my CPU!...
Performance & Maintenance
How to tell if Windows host process (Rundll32) is malware or not?
Greetings, I am in need of some assistance about the Windows host process (Rundll32). Just today as I was looking through my icons in my taskbar on my standard account, I noticed that there was a process labeled "Windows host process (Rundll32)" and I don't remember ever seeing it before (if not...
System Security
How to get rid of MoneyPak ransomware infection
My husband's user account has been taken over by the FBI-MoneyPak virus and is currently unusable. The other two accounts on the computer are password-protected (his isn't) and seem OK for now. I ran Windows Security Essentials and Malwarebytes scans from my account and they detected nothing. How...
System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 12:41.
Twitter Facebook Google+