Dear Experts I have installed Server 2003 service pack2 yesterday for my database server. Then I update the server from WINDOWS UPDATE site. Install Symantec Endpoint Antivirus. but when I today check the server i saw 20 to 25 rundll.exe in task manager's processes tab. I am woried about this please suggest me the safe way to get rid of this regards

Did u tried restarting the server after the installation ? if no try it and in case still you see some thing fishy read the below detail to understand the funtionality and detection of the dll launched by rundll or rundll32.dll Since there’s no way to directly launch a DLL file, the rundll32.exe or rundll.exe application is simply used to launch functionality stored in shared .dll files. This executable is a valid part of Windows, and normally shouldn’t be a threat. Note: the valid process is normally located at \Windows\System32\rundll32.exe or rundll.exe , but sometimes spyware uses the same filename and runs from a different directory in order to disguise itself. If you think you have a problem, you should always run a scan from the safe mode. and to see the complete file location of the rundll you can process explorer and make it sure that rundll is launching the legitimate .dll file. Note: Rundll loads and runs 16-bit DLLs, whereas Rundll32 loads and runs 32-bit DLLs. http://www.virmansec.com/blogs/skhairuddin