Hello,
I am in dire need of help with this problem. I've read through a thread with this problem but the solution was specific to the user that submitted. I am the Network Administrator for a company that deploys Dell Optiplex machines currently under a variety of platforms; some Windows 7 32bit and some 64. A staff member reported that their machine was running so slow it could not be used this morning so I began looking into the processes to see what was killing all the resources. I noticed a process named achlegb.exe *32 with a description of Google Chrome, even though I had recently uninstalled Google Chrome. There were at least 12 of these process running and each time I attempted to kill the process tree, more would spawn. I rebooted into safe mode w/o networking and deleted the files where these odd exe's were located (C:\Users\%Profilename%\AppData\LocalLow\Adobe). When I rebooted again, the achlegb processes were gone, but, rundll32 was present and shortly after the reboot, the Chrome Processes (achlegb) returned in full force. I disconnected the station from the network and set up the staff member on a temp station, and turned to the web. I stumbled across a bunch of threads all with the same problem (of sorts, the process name seems to vary) and each solution provided by the admins were specific to the user that submitted the thread. So that is why I am here. Symantec Endpoint Protection is deployed here but I use combofix on occasion to resolve registry issues. Please help. I can provide any scan information you need! Thank you
I am in dire need of help with this problem. I've read through a thread with this problem but the solution was specific to the user that submitted. I am the Network Administrator for a company that deploys Dell Optiplex machines currently under a variety of platforms; some Windows 7 32bit and some 64. A staff member reported that their machine was running so slow it could not be used this morning so I began looking into the processes to see what was killing all the resources. I noticed a process named achlegb.exe *32 with a description of Google Chrome, even though I had recently uninstalled Google Chrome. There were at least 12 of these process running and each time I attempted to kill the process tree, more would spawn. I rebooted into safe mode w/o networking and deleted the files where these odd exe's were located (C:\Users\%Profilename%\AppData\LocalLow\Adobe). When I rebooted again, the achlegb processes were gone, but, rundll32 was present and shortly after the reboot, the Chrome Processes (achlegb) returned in full force. I disconnected the station from the network and set up the staff member on a temp station, and turned to the web. I stumbled across a bunch of threads all with the same problem (of sorts, the process name seems to vary) and each solution provided by the admins were specific to the user that submitted the thread. So that is why I am here. Symantec Endpoint Protection is deployed here but I use combofix on occasion to resolve registry issues. Please help. I can provide any scan information you need! Thank you
