[Solved] rundll32.exe – Application Error – The Memory Could Not Be Read – Click OK To Terminate

by Rohit Khurana on October 14, 2009



Windows is prone to a lot of virus infections. It is important to keep windows updated and keep your anti-virus updated to prevent virus infections. Read this tutorial for general tips to keep your computer safe from virus infections.

One such annoying Infection is rundll32.exe application error. This kind of problem occurs due to infected or corrupted rundll32.exe file or some infected dll files. Below is the screenshot shared by one of our readers Naralagiri:


When such error appears, it will display a dialogue box saying :

rundll32.exe – Application Error. The instruction at “0x———-” referenced memory at “0x———“. The memory could not be “read”. Click OK to terminate the program.

After this, the application you were trying to launch will ether not be launched or will get terminated during its launch.

In this article we are going to share some of the methods that can fix this problem.


The rundll32.exe Application error is not a straight forward error. The possible reasons for this error are:


Problem 1. Corrupt rundll32.exe file – Which will cause such errors with many windows application. The solution to this problem should be replacement of rundll32.exe file. The solution is listed below in the article.

Solution 1:

To replace the file you need to put the Windows Installation disk in the CD ROM drive.
Click Start, and then click Run. Type the following without quotes and press enter


“expand X:\i386\rundll32.ex_ c:\windows\system32\rundll32.exe”

Restart the computer. This will replace the corrupt rundll32.exe with a fresh copy from windows installation CD/DVD.


Problem 2. Corrupt DLL file for some application – Which will cause problem with that specific application or a few application which depend on that dll file. The solution to this problem is bit tricky. See the rest of the article for solutions.

Solution 2:

For this you need to narrow down on which application is causing the crash, and identify the DLL. You can replace an Individual DLL if you suspect some DLL through the error message. Else in that case, I recommend to run a Repair Setup of Windows after taking your data backup.


Problem 3. Corrupt Registry values – There maybe some registry values which might be corrupted which are creating problems with the normal functioning of certain application. The solution to this problem is comparatively simple with use of certain registry cleaning tools.

Solution 3:

To solve registry problems, you can download free registry scanner like CC cleaner which is free and effective in cleaning registry errors. Scan and fix the registry errors and restart your computer.


Problem 4. Fake CSRSS file or CSRSS Virus -  This is because of an executable file with file name similar to the system file CSRSS.exe . The fake file will run and create rundll32 errors.

Solution4 :

Go to Start > Search and search for file named CSRSS. If you find more than one files by this name in some folders like “Prefetch” or other locations, these files might be the corrupt file or malicious file if they do not have .exe extension. Delete any suspicious file and restart your computer.


These four problems and solution will fix problem in most cases. There can be more than these reasons, if you have any other solution or reasons, please share through comments below.

If you like this article or this article helped you, you can +1 to recommend this article on google plus.

You can follow us on Twitter or join our Facebook Fan Page. If you have a question to ask us, submit your question at Answers By Trouble Fixers.

Looking for something else? Search here :

{ 6 comments… read them below or add one }

Deyaa Addeen Fahmy Shedeed October 15, 2009 at 6:18 pm

Welldone, thanks.

Deyaa Addeen Fahmy Shedeed October 15, 2009 at 6:28 pm

If a process named csrss.exe is running on your computer, you may have been infected with a strain of the Ahlem.A worm.

csrss.exe is considered to be a security risk, not only because antivirus programs flag Ahlem.A Worm as a virus, but also because a number of users have complained about its performance.

Ahlem.A Worm is likely a virus and as such, presents a serious vulnerability which should be fixed immediately! Delaying the removal of csrss.exe may cause serious harm to your system and will likely cause a number of problems, such as slow performance, loss of data or leaking private information to websites.

From another site.

Deyaa Addeen Fahmy Shedeed October 15, 2009 at 6:30 pm

Virus Removal Areses (windows\csrss.exe) Trojan.
Also Areses is known as Win32.HLLM.Perf, W32/Bagle-GT, W32/ARESES.AB@mm – 06-10-04.

Areses is not hard in detection. It uses the same name as the Windows system process “csrss.exe” located in the System32 folder.

But the Areses can make the removal process hard for common user.

If a user simply deletes the file he will see the message that the Windows system file has been deleted and he will be asked for the Windows CD-ROM to restore deleted file.

If a user is smart and he will ignore the Trojan restore process, he will see the blue screen after reboot. Windows explorer could not start.


Areses uses the following registry key to be started at Windows boot:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\

It creates sub-key explorer.exe and the value under it:


This will allows the Trojan to be started every time when the explorer.exe will be launched.

This possibility is used by debuggers but it’s ideal for viruses too.

The Trojan can use any process name for activation not only explorer.exe. It can add the value notepad.exe and be started with executing Notepad.

The Image File Execution Options must be under control!

If you see the clear screen without explorer, press CTRL+ALT+DEL to start Task Manager, open regedit.exe, delete the registry key. After that open “explorer.exe”.

RegRun with Partizan technology allows you to remove this virus easily with disturbance.

How Partizan works?

Partizan system driver intercepts the registry key open function and it not allows to open Image File Execution Options, Winlogon Notifications keys.

When the “Scan for Viruses” is started it will turn off the protection and Reanimator can delete the registry key without any problems.

ARESES spreads via e-mail with attached crypted “hta” file.

from another site.

Any one pro can axplain.

nimesh May 16, 2010 at 5:53 pm

i have a some error like this type
The instruction at “0x007b2210″ reference memory at 0x00000000” The memory coulld not br “read”.
Click on ok to terminate program
please give me solution

nimesh May 16, 2010 at 6:30 pm

i have trouble shooting one error like that
The instruction at “0x007b2210” referenced memory at “0x00000000”.The memory could not be “read”.
Click on ok to terminate the pogram.

Please give me a solution.
my email id is nimesh.patel.2708@gmail.com

Balaji March 6, 2012 at 10:14 am

this imfermation is very important to me /I always this problem.thanks for imfermation.

Leave a Comment

Previous post:

Next post:

© TroubleFixers – All about fixing computer troubles2007-2016 . All Rights Reserved.