Thanks for the extensive discussion on rundll32.exe. I have found malicious programs started by this utility. However, at any one time there may be several copies of rundll32 running at the same time. What I would like to know is there any way to tell what DLL the utility is currently running & where it came from? I generally use EVEREST home addition to examine what is currently running in memory. It is one of the best analysis programs I have found, but it doesn?t give you such insight.
Cameras that make great holiday gifts
Let them start the new year with a step up in photo and video quality from a phone.