Over the last few months my computer has had lots of problems, I attributed them to age as I was unable to detect any malware…until now. I’m going to post the symptoms here so that others who have these problems can find this post and hopefully it can help them.
It started with GPU crashes…all the time. I would be playing a game and suddenly…pow 640x480 8bit. I also noticed a general degradation in performance. The next thing I noticed was that from time to time there would be not one but four listings of the rundll32.exe (all of them originating from \system32) and occasionally I would have trouble with my internet, getting constant internal connection errors, essentially an internal DDOS attack. This would continue until either I restarted my computer or I ended a mysterious program that would pop up sometimes called ~tmf********** (where stars indicate a random string of numbers), all the while avast would not pop up and I couldn’t find anything doing manual scans. Eventually one of the four rundll32.exe’s started being the culprit for the internet connection errors but there was no way of knowing for sure which one and so I would just reboot at every occasion, watching and waiting…sometimes searching and finding others had problems but nowhere could I find a solution.
Until today…this morning I restarted my computer as it was having problems again and upon boot Avast notified me that rundll32.exe was a “malware generator”. Avast had caught it trying to run three different dll’s from \application data…rujyiko.dll, homkido.dll and rosighm.dll. True to it’s name those dll’s didn’t infact exist as when Avast terminated the process it also terminated their existance.
Now, my question is, how do I squash this? It’s located in my \system32 folder meaning that it is still needed for my computer to boot so simply removing it is out of the question, what am I to do?
Thank you in advance