Avanquest Fix-It Utilities 8 Professional for PC (018059016606) Logo

Related Topics:

Posted on Dec 26, 2008
Answered

Reoccurring virus the virus is : RootKit.TDSS.Gen . It's in c:\windows\system32\TDSSdxgp.dll . I scan computer this morning , softeware qurantine this virus 4 times from 12/25 to 12/26 , This virus is still on pc , cause every time I deep scan it shows up

Answer This Question

1 Answer

Anonymous

Level 1:

An expert who has achieved level 1.
Hot-Shot:

An expert who has answered 20 questions.
Corporal:

An expert that has over 10 points.
Mayor:

An expert whose answer got voted for 2 times.

  • Contributor 25 Answers
  • Posted on Dec 30, 2008
Anonymous
Contributor
Level 1:

An expert who has achieved level 1.
Hot-Shot:

An expert who has answered 20 questions.
Corporal:

An expert that has over 10 points.
Mayor:

An expert whose answer got voted for 2 times.

Joined: Dec 29, 2008
Answers
25
Questions
0
Helped
4034
Points
29

I am glad i am the first person to see this. Rootkits infect some vital processes. I had one once, but i got rid of it.

Try this. Its free, and it works.

http://www.softpedia.com/get/Antivirus/AVG-Anti-Rootkit.shtml

Add Your Answer

×

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

3helpful
4answers

Kernel32.dll can be a problem, so my pc taking too much time to shut down
How to perform kernel32.dll repair, one common methodinvolves acquiring a new version of your kernel32.dll file and installing itright into your registry. This will fix most problems with the file- like ifit's missing or if it's still there but has become corrupted at one point oranother.
Read full answer
Dec 21, 2010 • Computers & Internet
tip

How do I fix rundll32.exe on Windows XP?
Rundll32.exe is an important process for the Windows operating system. The process rundll32.exe take the dll file and put their libraries in the system memory. Without this process, the computer should be unstable and very slow.<br /><br />The process runs from your system directory C: \ Windows \ system32. If it executes or runs from elsewhere is most likely a virus or a Trojan. You should scan your computer immediately with a virus scanner. Viruses using the name rundll32.exe are W32.Miroot.Worm. Backdoor.Lastdoor and Trojan.StartPage (among others).<br /><br /><span style="font-weight: bold;">Fix rundll32.exe</span><br /><br />If a virus, such as Netsky, destroys rundll32.exe or, if for any reason, your rundll32.exe is corrupt or is accidentally removed, you must do the following:<br /><br style="font-weight: bold;" /><span style="font-weight: bold;">Find rundll32.exe DC system</span><br /><br />Check if you find a copy of rundll32.exe in the folder C: \ Windows \ system32 \ dllcache or in C: \ Windows \ Service Pack Files \ i386. If yes, go ahead and copy rundll32.exe to the system directory C: \ Windows \ system32<br /><br />If you can not find a copy on your system, try to locate the file on your Windows installation disc. Finally, you just reinstall Windows. It would be time consuming, and you may lose all your data. So what would be the last resort.<br /><br /><span style="font-weight: bold;">First, run a system repair tool to fix rundll32.exe</span><br /><br />There are various tools on the Internet that scan, analyze and fix your computer. In addition to solving your rundll32.exe these tools to remove all registry errors, remove invalid shortcuts and duplicate files, repair DLL files, and remove the errors start-up and running.<br /><br />
Read full tip
on Mar 07, 2011 • Computers & Internet
22helpful
1answer

How to repair missing wininet.dll?
If you see an error related to the wininet.dll file being deleted or missing, copy this file from the c:\windows\system32 directory of a working Win XP Pro
or Win Vista computer onto a flashdrive, then use the following procedure to copy it onto the failing system.
  1. At the boot screen (the first thing to appear at power-up), hit the F8 function key.
  2. Select 'Safe Mode with Command Prompt' and continue.
  3. In the command prompt window, type the letter of your flash drive, either d: or e: until the drive appears as e:> in the prompt window.
  4. Type 'dir' to see the wininet.dll file on that flashdrive.
  5. Once you see that file, type 'copy wininet.dll c:\windows\system32'.
  6. Unplug the flashdrive and reboot the failing PC.
Once you succeed in reviving the failed computer, go to c:\windows\system32 and right click on the wininet.dll file then copy and paste it to a save name (recommended name: wininet-copy.dll). This allows direct copy of that file back into wininet.dll if the problem reoccurs.

If you suspect an anitvirus engine or some other application deleted this file - and if it occurs again, make note of what was being performed, immediately before the failure mode. This will lead you to the offending program needing attention.

Good luck, hope this helps.
Read full answer
Aug 07, 2010 • IBM NetVista PC Desktop
0helpful
1answer

HOW TO REMOVE THE ROOTKIT.TDSS caused by the Trojan virsus
Hi, You have to remove these to get rid of this Rootkit. This post is for an Advanced User Only!
Files and Processes:
  • Files which spread the Virus:
  • RkLYLyoM.exe, podmena.exe, file.exe, ~.exe, 7-v3av.exe, csrssc.exe (note that this is not CSRSS.EXE), 72631899.exe, 1776260179.exe, ucxmykkc.exe.
  • The above files will create processes and run while spreading the Virus and providing Backdoors to your machine as well as performing Remote Attacks on Servers.
  • This Rootkit and associated Trojan creates .sys (system files) to alter network configurations as well.
  • Delete these files.
  • _VOIDd.sys, _VOID[random].sys, UAC[random].sys, UACyylfjdaa.dll, TDSSnrsr.dll, TDSSmaxt.sys, tdssserf.dll, TDSSriqp.dll, TDSSciou.dll, TDSSoexh.dll, tdidrv2.sys, RkLYLyoM.exe, podmena.exe, tdssserv.sys, file.exe, ~.exe, 7-v3av.exe, csrssc.exe, 72631899.exe, 1776260179.exe, ucxmykkc.exe
  • Each variant of this is associated with one or more files in the above list. It drops .dll (dynamic link library files) as well. Dll files and Sys files are the actual performers in the background.
  • You have to remove these files from the startup as well. Using msconfig. From their you may be able to find additional files associated with this one as well. Verify by browsing. Browse by the file name. If you found that it is a virus, note the path and next time you will be able to remove it. I ll provide instructions at the bottom of this post.
  • Directories:
  • C:\WINDOWS\_VOID[random]\
  • Delete this as well.
  • Delete Registry values Associated with this.
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\_VOIDd.sys
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\_VOID[random]
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\UACd.sys
Note: Random means the file name will be different for each instance.
  • Unregistering DLL files. The most important one.
  • You have to unregister these .dll files.
  • UACyylfjdaa.dll, TDSSnrsr.dll, tdssserf.dll, TDSSriqp.dll, TDSSciou.dll, TDSSoexh.dll.
  • The unregistering instruction will be provided at the bottom of this post.
You must delete your Temporary internet Files and Local Settings \ Temp. Located - Root:\Documents and Settings\[Admin account name - this may be either Administrator or any other account which has Admin Rights]\Local Settings\Temp. Note: Root is the Partition which has Windows Installed (Example C drive)
You must be able to see Hidden Files and Folders. Follow the steps...
You must clean your Browser Cache using Internet Options. Each and every browser has a place to clear the Cache. As an example "Google Chrome has it under Options -> Under the Hood -> Clear Browsing Data. Its better if you can disable Local Caching.
I recommend to do this in Safemode. Use F8 after restarting the machine. The select Safemode. Note: You may or may not find Processes associated with this RK however because they will not be loaded. If so you can use msconfig to locate "Startup" programs.
After everything done, flush your DNS. Get a Command Prompt (Start -> Run -> Type cmd.exe and hit Enter) Type this command and hit Enter. ipconfig/ flushdns
Contd...Post is too long...
Read full answer
Jul 13, 2010 • Dell Microsoft Windows XP Home Edition
2helpful
2answers

How to remove TR/rootkit.gen trojan from Windows/system32 ? elp me pleasee
hello get an antivirus, that is all you require or windows essential security
Read full answer
Mar 27, 2010 • Microsoft Windows XP Professional
0helpful
2answers

Virus
nod32
Read full answer
Mar 24, 2010 • Kaspersky Labs Anti-Virus 2009 for PC
0helpful
1answer

How do I fix the dcom server launcher, the computer keeps shutting down after it's been on for about five minutes?
Click Here to Download this program (its free). Install it. Update it. Run a FULL scan of your computer (took about 30 minutes and the viruses didn't pop up until the very end of the scan). Delete ALL of them (note: you have to reboot to delete the ones in windows system 32) There will be a list of about 5-10 infections they should be similar to:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\tdssdata (Trojan.Agent)

HKEY_LOCAL_MACHINE\SOFTWARE\tdss (Trojan.Agent)

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Tcpip\Parameters\NameServer (Trojan.DNSChanger)

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\T cpip\Parameters\NameServer (Trojan.DNSChanger)

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\T cpip\Parameters\NameServer (Trojan.DNSChanger)

C:\WINDOWS\system32\tdssadw.dll (Trojan.Agent)

C:\WINDOWS\system32\tdssl.dll (Trojan.Agent)

C:\WINDOWS\system32\tdssserf.dll (Trojan.Agent)

C:\WINDOWS\system32\tdssmain.dll (Trojan.Agent)

C:\WINDOWS\system32\tdssinit.dll (Trojan.Agent)

C:\WINDOWS\system32\tdsslog.dll (Trojan.Agent)

C:\WINDOWS\system32\tdssservers.dat (Trojan.Agent)

C:\WINDOWS\system32\drivers\tdssserv.sys (Trojan.Agent)

Thanks for using Fixya!

Read full answer
Jan 31, 2010 • Computers & Internet
0helpful
1answer

Rootkit
Hello,first try to find the driver from device manager(right click to my computer,properties,hardware,device manager).Once you have open the device manager press on View and check Show hidden devices,your driver(virus) is on non plug and play drivers and with right click you can unistall it.But if is a root kid and a tought one it should have another file in your system to recreate it!So clean your windows temp files and internet temporary internet files(you can with a application or just right click to your disk,properties and click disk clenup).If you still can fix it
download HijackThis and in the main menu press do a system scan and save logfile.After open your logfile and give me the results
Good luck
Read full answer
Jan 22, 2010 • Internet Grisoft AVG Security Full...
1helpful
2answers

Cannot use my pictures folder in windows XP, error reads Uxcore.d
Try re-installing uxcore.dll file.

To re-install UXCore.dll

Just follow this repair link (http://www.corruptedfilerepair.com/File-Information/UXCore.dll-Windows-Live-Client-UX-Microsoft-Corporation.asp) and download the file named UXcore.dll

To download and install a DLL file, you will first need to download the DLL file and register it on your computer.

Steps:

1. Download the DLL file from the download link on this page and save the file to one of the folders as seen in step 3. .EXE files do not need to be manually registered.

2. Backup the old version of the DLL file.

3. Click Start > Run and type in the following command:

Windows 95, 98, or Me:
regsvr32 \windows\system\UXCore.dll

Windows NT or 2000:
regsvr32 \WINNT\system32\UXCore.dll

Windows XP or Vista or Windows 7:
regsvr32 \windows\system32\UXCore.dll

Download File UXCore.dll

EXE (Executable) Files:

Steps:

1. Download the file to a folder on your computer

2. Scan the .EXE file using an Anti-Virus Scanner.

3. Run the .EXE file by double-clicking the file

ZIP/RAR Archives:

You will need to uncompress the files in the archive using WinRAR or WinZip first.


Nore : Default Location - c:\program files\windows live\installer\uxcore.dll
Read full answer
Jul 17, 2009 • Microsoft Windows XP Home Edition
0helpful
3answers

My laptop wont let me use most programmes because of system 32
What specific error are you getting and what operating system do you have.
Read full answer
Jul 17, 2007 • LG X-Note LM50 Notebook
Not finding what you are looking for?

View Most Popular

Fix-It Utilities 8 Professional for PC (018059016606)

  • Computers & Internet

Related Question

Kernel32.dll can be a problem, so my pc taking too much time to shut down

  • Computers & Internet

Related Topics

76 views

Ask a Question

Usually answered in minutes!

Popular Questions

I have an error message on My Invoices & Estimates when trying to save an invoice data saving error: Save Entity exception. It wont let me save it or back out of it... What do i need to do to cor

Avanquest My Invoices And Estimates...

"My Invoices & Estmates Deluxe" - Repair corrupt '.inv' invoice file

Avanquest My Invoices And Estimates...

Finding a serial number for FIX-IT Utilities 10.

Avanquest Fix-It Utilities 8...

Cannot uninstall Avanquest SystemSuite? 9 Professional; need urgent help

Avanquest System Suite 8: Windows

Error invalid database file

Avanquest Driver Genius for PC...

Check Out the Mobile Browsers Report
Check Out the Mobile Browsers Report

View all Fixya Reports

Top Avanquest Computers & Internet Experts

Grand Canyon Tech
Grand Canyon Tech

Level 3 Expert

3867 Answers

Grubhead
Grubhead

Level 3 Expert

5755 Answers

Cindy Wells

Level 3 Expert

6688 Answers

Are you an Avanquest Computer and Internet Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...