d3dxo.dll virus-how to get rid of

d3dxo.dll virus-how to get rid of
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Antivirus Discussions    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
d3dxo.dll virus-how to get rid of Fonz 11-14-2007
Posted by Fonz on November 14, 2007, 12:51 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Good Morning all.
I'm trying to get rid of a virus which has been found in C:/windows/system32
folder called:
d3dxo.dll. Looking on the internet revels it may be a very benign virus,
with limited security concerns, but... who knows.

I'm using AVG which is up to date, and every time I open an explorer page I
get warnings. I try to put it into a virus vault and delete, but it's
always there, even after a reboot.
tried deleteing in the command mode and it stated access denied.
Any help is appreciated.
Rob
Australia.



Posted by Fonz on November 14, 2007, 4:13 am
If you were  Registered and logged in, you could reply and use other advanced thread options
I've tried unregistering the dll, but I get an error message of access
denied all the time. Any other ideas?
How do I found out what is activating the DLL?
Thanks again,
Rob.

> Good Morning all.
> I'm trying to get rid of a virus which has been found in
> C:/windows/system32 folder called:
> d3dxo.dll. Looking on the internet revels it may be a very benign virus,
> with limited security concerns, but... who knows.
>
> I'm using AVG which is up to date, and every time I open an explorer page
> I get warnings. I try to put it into a virus vault and delete, but it's
> always there, even after a reboot.
> tried deleteing in the command mode and it stated access denied.
> Any help is appreciated.
> Rob
> Australia.
>
>



Posted by =?Utf-8?B?TmV3ZWxsIFdoaXRl?= on November 14, 2007, 5:14 am
If you were  Registered and logged in, you could reply and use other advanced thread options
1) In Windows Explorer, record modified date/time of d3dxo.dll
2) Rename it by adding zzx_ prefix.
3) Get Internet Explorer to delete all temporary files and downloaded
program files.
4) Reboot.

If d3dxo.dll re-appears, continue:
5) Rename it again
6) In Explorer, search C:\ for all files modified on the date you recorded
in (1) above. Sort into time order and rename all files of the same size as
d3dxo.dll modified within 2 minutes of the time you recorded.
7) Record paths of all other files modified in this time window - they are
suspects.
8) Reboot with no network connection.
9) If d3dxo.dll does not appear, the only other thing to guard against is an
intruder program that calls home to download the files you renamed.
10) Plug into the network, and if you don't have a software firewall which
alerts on outgoing traffic, install one - e.g. free version of Zone Alarm.
11) Make sure the infection has not already re-appeared, and reboot again.
12) Zone alarm should alert you if one of the suspects tries to call home.
Re-name it.
13) If you want to, delete the renamed files.
--
HTH,
Newell White


"Fonz" wrote:

> I've tried unregistering the dll, but I get an error message of access
> denied all the time. Any other ideas?
> How do I found out what is activating the DLL?
> Thanks again,
> Rob.
>
> > Good Morning all.
> > I'm trying to get rid of a virus which has been found in
> > C:/windows/system32 folder called:
> > d3dxo.dll. Looking on the internet revels it may be a very benign virus,
> > with limited security concerns, but... who knows.
> >
> > I'm using AVG which is up to date, and every time I open an explorer page
> > I get warnings. I try to put it into a virus vault and delete, but it's
> > always there, even after a reboot.
> > tried deleteing in the command mode and it stated access denied.
> > Any help is appreciated.
> > Rob
> > Australia.
> >
> >
>
>
>

Posted by =?Utf-8?B?QVZHIE5vIGdvb2QgdXNl on February 2, 2008, 12:51 am
If you were  Registered and logged in, you could reply and use other advanced thread options
zone alarm is an adware and a pain in the ass, it is very atrusive

"Newell White" wrote:

> 1) In Windows Explorer, record modified date/time of d3dxo.dll
> 2) Rename it by adding zzx_ prefix.
> 3) Get Internet Explorer to delete all temporary files and downloaded
> program files.
> 4) Reboot.
>
> If d3dxo.dll re-appears, continue:
> 5) Rename it again
> 6) In Explorer, search C:\ for all files modified on the date you recorded
> in (1) above. Sort into time order and rename all files of the same size as
> d3dxo.dll modified within 2 minutes of the time you recorded.
> 7) Record paths of all other files modified in this time window - they are
> suspects.
> 8) Reboot with no network connection.
> 9) If d3dxo.dll does not appear, the only other thing to guard against is an
> intruder program that calls home to download the files you renamed.
> 10) Plug into the network, and if you don't have a software firewall which
> alerts on outgoing traffic, install one - e.g. free version of Zone Alarm.
> 11) Make sure the infection has not already re-appeared, and reboot again.
> 12) Zone alarm should alert you if one of the suspects tries to call home.
> Re-name it.
> 13) If you want to, delete the renamed files.
> --
> HTH,
> Newell White
>
>
> "Fonz" wrote:
>
> > I've tried unregistering the dll, but I get an error message of access
> > denied all the time. Any other ideas?
> > How do I found out what is activating the DLL?
> > Thanks again,
> > Rob.
> >
> > > Good Morning all.
> > > I'm trying to get rid of a virus which has been found in
> > > C:/windows/system32 folder called:
> > > d3dxo.dll. Looking on the internet revels it may be a very benign virus,
> > > with limited security concerns, but... who knows.
> > >
> > > I'm using AVG which is up to date, and every time I open an explorer page
> > > I get warnings. I try to put it into a virus vault and delete, but it's
> > > always there, even after a reboot.
> > > tried deleteing in the command mode and it stated access denied.
> > > Any help is appreciated.
> > > Rob
> > > Australia.
> > >
> > >
> >
> >
> >

Posted by Ckyp on November 14, 2007, 3:14 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

>I've tried unregistering the dll, but I get an error message of access
>denied all the time. Any other ideas?
>How do I found out what is activating the DLL?
>Thanks again,
>Rob.

Sounds like your browser has been "highjacked". Don't you hate that!

A thorough solution is to download the freeware version of "SUPERAntiSpyware":
http://www.superantispyware.com/downloadfile.html?productid=SUPERANTISPYWAREFREE

Install it, make sure it's completely up to date, then run a full system scan
and follow the prompts. If "SAS" can't fix it, probably nothing else will.
It completely destroys "vundo", "winfixer", and all that kind of garbage. And
the "SAS" author keeps the program's functionality and database completely up
to date. If you can afford the commercial version, it's probably worth it, but
I only recommend freeware programs or program versions, so I won't be seen as
a "spammer". Nothing worse than spammers! They're like telephone solicitors
that used to invade our private residence while we were eating dinner. We now
have a "no call" law here in America, but before that federal law was passed,
we used to get three or four unsolicited calls a day... I ended up turning off
the telephone ringers, and let our answering machine filter out calls.

Anyway, there's nothing like the freeware "SpyBot" for general anti-spyware:
http://www.spybot.info/en/download/

I use AVG and SpyBot on all my computers. They're both free, and neither
one of these programs has slowed any of my home computer systems down. I use
"SAS" to run a full system scan once every month or so, just to make sure
"SpyBot" hasn't missed anything. So far, so good. The real-time protection
afforded by the freeware "SpyBot" has apparently done its job, and I
probably average 80 hours per week working over the Internet. So I know AVG
and SpyBot are definitely keeping my computers bug-free.

Good luck.

--

Ckyp



The site map in XML format XML site map

Contact Us | Privacy Policy