Problem with System Fix virus

  onthelimit1 18:23 08 Dec 2011

Second PC in two days infected with this virus. First one was cleared using the Bleepingcomputer guide. On the second one, rkill and TDSSKiller run OK, but I can't install MBAM -'could not complete the operation' etc. I'm logged in as Administarator in Safe Mode.

Any ideas, please?

  onthelimit1 18:47 08 Dec 2011

Thanks buteman -I've already tried hitman and the Trendmicro online scans 9sorry, I should have mentioned that in my first post). They both found problems, but infection still there after re-boot. I've also tried renaming the MBAM file, but that didn't work either. This seems a particularly difficult bug!

  onthelimit1 18:55 08 Dec 2011

No, not ticked. I can download MBAM, but at the end of the setup phase, it stops with an access denied message. Clicking OK just rolls back the installation.

  Fruit Bat /\0/\ 19:33 08 Dec 2011

Start- Run (search box) type devmgmt.msc and click OK

On the View menu - Show hidden devices Browse to Non-Plug and Play Drivers and you should see something like

TDSSspax.sys TDSSServ.sys gaopdxserv.sys UACmxegjtve.sys

Highlight the drivers and right click and select DISABLE - NOT uninstall.

Now RESTART your computer.

Download a copy of Malwarebytes or if you already have the install file but DO NOT run it yet.

Rename the downloaded installer file to any generic name such as your own name but keep the .EXE extension on the file and run it.

Once the program is installed go to the UPDATE tab and try to update the program if you can.

Then run a Quick Scan and allow MBAM to fix everything found.

  onthelimit1 19:50 08 Dec 2011

Thanks FB - in the middle of running Combofix at the mo. Will reporty back!

  onthelimit1 20:16 08 Dec 2011

Thanks all, but so far so good - Combofix has finished its run, and MBAM has now installed and is running. Shall report back in due course (this is a nasty little beggar).

  onthelimit1 09:00 09 Dec 2011

OK, PC now boots normally with no sign of the virus. All folders are available again.

BUT - the desktop has no icons visible. Right clicking the desktop does not produce the usual drop-down menu where 'arrange icons' can normally be seen. Further thoughts please (I wondered about a system restore, but that had been turned off sometime during the procedure).

  onthelimit1 09:58 09 Dec 2011

Nope - still nothing!

  onthelimit1 11:19 09 Dec 2011

Thanks. Before I saw your post, I ran unhide.exe again (from bleeping computer) and that has done the trick this time. Something else to store away for yhe next time - phew!

  Fruit Bat /\0/\ 11:22 09 Dec 2011

Some system files must have been infected and removed therefore I think you need to do a repair to get those corrupt or missing files back.


sfc /scannow

in the run box, press enter and let system file checker find and replace missing / corrupt file in windows and explorer.This will take awhile to complete and you may be asked for the CD to be in the drive if windows is not preinstalled on the hard drive.

sfc /scannow problems

This thread is now locked and can not be replied to.

Elsewhere on IDG sites

FIFA 19 review

How the brilliant, moving Oscar-nominated film The Breadwinner was visually brought to life

iPhone XS vs iPhone X: What is the difference?

Pixel 3 : date de sortie, prix et autres rumeurs