Trojan Horse RUDL.A

  GRANT121 13:56 08 Feb 2004

Afternoon people,

AVG has picked up the above trojan in rundll32.exe and is unable to heal it. I've scanned the net for information on this trojan but found nothing at all. I've also downloaded two trojan removal programs but neither have worked. Any recomendations? I'd prefer not to format my drive, but will if need be.
Cheers in advance.


  Proxy Worm 14:01 08 Feb 2004
  GRANT121 14:14 08 Feb 2004

Cheers Proxy Worm,
I gave that a go, but it couldn't find anything.

  VoG II 14:25 08 Feb 2004
  GRANT121 14:32 08 Feb 2004

Thanks VoG,
....but again it found nothing. Any more ideas?

  Sheila-214876 14:42 08 Feb 2004

No, I can't find anything either. Is this AVG being a bit over zealous? I have AVG installed but it hasn't flagged this one up on my computer. I usually use McAfee/Virus Information to checkout virii? but nothing is listed on their site about rudl.a

  Proxy Worm 14:43 08 Feb 2004

Try this click here

  GRANT121 18:01 08 Feb 2004

Thanks for the sites mate. Downloaded TDS and it listed the following as an alarm:-
"Scan Control Dumped @ 17:55:21 08-02-04
RegVal Trace: RAT.BlueAdeptz: HKEY_CURRENT_USER
File: Software\Microsoft\Windows\CurrentVersion\Run [RunDLL32=C:\windows\rundll32.exe]"

However rundll32.exe is always locked by another process, i presume this is why none of the trojan removal programs i've used can detect/destroy it.
A format and re-install is looking more likely then ever. Oh well, at least it teaches me to update AVG more frequently!

  GRANT121 13:59 10 Feb 2004

Fixed. Rebooted into safe mode and then ran Trojan hunter. Rebooted, ran AVG which then healed the file.

This thread is now locked and can not be replied to.

Elsewhere on IDG sites

HP Envy x2 review: Hands-on

Iconic New York graphic designer Milton Glaser on his uplifting new subway posters

New iMac Pro release date, UK price & specs rumours

Comment suivre le parcours du père Noël ?