Windows 10: Rundll32 Injected with mining malware

Discus and support Rundll32 Injected with mining malware in AntiVirus, Firewalls and System Security to solve the problem; Hi all please help, i have a malware injected that continuously runs rundll32.exe, it takes up 100% of GPU and almost 90% of my ram space. It lasts for... Discussion in 'AntiVirus, Firewalls and System Security' started by Elisha5555, Jan 23, 2022.

  1. ELISHA5555
    Elisha5555 Win User

    Rundll32 Injected with mining malware


    Hi all please help, i have a malware injected that continuously runs rundll32.exe, it takes up 100% of GPU and almost 90% of my ram space. It lasts for 10-20 sec before returning to normal, and then 5-7mins later again it will run once more. My PC fan would be very loud and it heats up. On task manager, I have checked the location of the file and it brings me to C:\Windows\System32\rundll32.exe. It seems normal since VirusTotal said the file is safe. I ran a full pc scan with MalwareBytes Trial as well as Kaspersky free. Both did not find anything. I then proceed to download Process Explorer a

    :)
     
    Elisha5555, Jan 23, 2022
    #1
  2. KAYESBP
    KayeSBP Win User

    Is rundll32.exe a Malware?

    What is this? C:\Windows\SysWOW64\rundll32.exe

    [Original Title: Malware?]
     
    KayeSBP, Jan 23, 2022
    #2
  3. LE BOULE
    Le Boule Win User
    Is rundll32.exe a Malware?

    It is a legitimate Windows file but sometimes it may be compromised by or a similar file may be created by malware.



    Why do you think the file in your computer is malware?



    Did you seek advice from your antivirus provider (Avast, Kaspersky, McAfee, Norton, etc) regarding your question?



    You may want to send a copy of the file(s) to Virus Total for analysis: VirusTotal



    If you think you have malware on your computer recommend you scan with the Emsisoft Emergency Kit (a free program): Как обнаружить и удалить угрозы с помощью Emsisoft Emergency Kit - Emsisoft | Security Blog If
    necessary boot into Safe Mode/Safe Mode with Networking to download and run the scanner or use another computer, put the EEK file on a flash drive and insert the flash drive in the infected computer...you can run the scanner from the flash drive. Other scanners
    (some of which may be run in Safe Mode or from a flash drive) that may help with this issue are listed in List
    of Malware Removal Tools



    Or see
    https://malwaretips.com/blogs/malware-removal-guide-for-windows/     Note that you may need to reset your browsers.



    Regards…



    Top 10 Ways PUPs Sneak Onto Your Computer. And How To Avoid Them. - Emsisoft | Security Blog
     
    Le Boule, Jan 23, 2022
    #3
  4. HSEHESTEDT
    hsehestedt Win User

    Rundll32 Injected with mining malware

    hsehestedt, Jan 23, 2022
    #4
Thema:

Rundll32 Injected with mining malware

Loading...

  1. Rundll32 Injected with mining malware - Similar Threads - Rundll32 Injected mining

  2. rundll32

    in Windows 10 Gaming
    rundll32: I have a program that has a "d3d.dll" file in it and when I run the program it causes "rundll32.exe" to run.When I exit, and check the task manager "rundll32.exe" is still running as a process. This causes problems when I run the program again.So haw can I stop the...

  3. rundll32

    in Windows 10 Software and Apps
    rundll32: I have a program that has a "d3d.dll" file in it and when I run the program it causes "rundll32.exe" to run.When I exit, and check the task manager "rundll32.exe" is still running as a process. This causes problems when I run the program again.So haw can I stop the...

  4. my pc is infected with unremovable crypto mining malware

    in AntiVirus, Firewalls and System Security
    my pc is infected with unremovable crypto mining malware: there is a process that has no name with a settings symbol, and when i click on open file location it brings me to svchost in system32, i cant end the task or the pc will bsod, malwarebytes shows nothing, windows defender shows nothing, and it uses about 50% of my cpu and 80...

  5. Scanning for cryptocurrency mining malware

    in AntiVirus, Firewalls and System Security
    Scanning for cryptocurrency mining malware: My windows 10 version is Home, 20H2, 64 bit. Build 19042.685 Many times, while having my laptop sit idle for few minutes, it heats up and fan speed go high. This happens mostly when during noon time when I often have to get off the laptop to answer the doorbell. No heavy...

  6. Scanning for cryptocurrency mining malware

    in Windows 10 Support
    Scanning for cryptocurrency mining malware: My windows 10 version is Home, 20H2, 64 bit. Build 19042.685 Many times, while having my laptop sit idle for few minutes, it heats up and fan speed go high. This happens mostly when during noon time when I often have to get off the laptop to answer the doorbell. No heavy...

  7. Rundll32

    in Windows 10 Network and Sharing
    Rundll32: I just have a question about something that happens all the time for me. When i start my pc while its fully been shutdown, my task manager looks always good and the same as each start up. But always, aftrr i would "restart" my pc. Not shutdown and restart. Rundll32...

  8. Rundll32

    in Windows 10 BSOD Crashes and Debugging
    Rundll32: Ever since I downloaded the windows 10 update from windows 8, my laptop was never the same! I had the laptop for over 5 years and now the CPU is running at 99-100 percent, with tons of windows host/rundll32 processors in the background, causing it to run so slow I can’t...

  9. Cryptocurrency mining malware disables security to remain undetected

    in Windows 10 News
    Cryptocurrency mining malware disables security to remain undetected: Cryptojacking campaign targets Linux servers that haven't had patches for known vulnerabilities applied. A form of cryptojacking malware has added the ability to disable cloud security software to help avoid detection and increase its chance of illicitly mining for...

  10. This cryptojacking mining malware pretends to be a Flash update

    in Windows 10 News
    This cryptojacking mining malware pretends to be a Flash update: Crooks are attempting to spread their cryptojacking malware to unsuspecting victims by disguising it as an update for Flash. The fake updaters are delivered to victims via web pop-up windows and use authentic-looking branding to increase the chances of a download. If a...