Possible sysvxd.exe virus

Posted on 2009-02-19
Last Modified: 2013-11-22

We have client that is getting an error when clicking through a link in Google, the web launches a seperate page
'16 Bit MS DOS Subsystem'

Anyone seen this error before? I am gussing that it is some form of virus?

Question by:YellowbusTeam
    LVL 7

    Accepted Solution

    Hi YellowbusTeam,

    The error as you mentioned '16 Bit MS DOS Subsystem' 'C:\WINDOWS\Sysvxd.exe' while opening a link in Google is this seen only for a specific link.

    Confirm if user is able to open any other link from google or any link.

    If the error is for any link then possible some kind of antispyware ...I would suggest you download and run the HijackThis tool from TrendMicro I have given the link below:

    Let me know the update.



    LVL 6

    Assisted Solution

    That is one of those bogus website that tells you that you have a problem and that you need to buy something to remove it. I would recommend a few things. One stop using internet Explorer and use Mozilla Firefox or something similar to that. When people write spyware exploits they write it for the most commonly used thing and that is...INTERNET EXPLORER!!! So by using an alternative browser you cut out a lot of that stuff. Two make sure windows is up to date. Three run an anti virus program such as AVG ( ) or Avira ( ). Four go and download and run something like Spybot Search and Destory ( ) or go and google trendmicro housecall and run it. Five go check out OpenDNS ( ). Its a free service and it filters your internet.  Its free and my experience is that there DNS is faster than my ISP.  I would highly recommend it and read into it...its a great service and its FREE!

    Author Comment

    Hi Surfer24,

    Attached is the report our client obtained from the trend micro program you sent us the link to. It has found quite alot of entries, is this now something we need to go through and clear up.


    Author Comment

    Hi thebrandednetwork,

    The client is currently running NOD32 antivirus business addition, but has no spywear software at present.
    What the next step to take if these pieses of software didint find anythig, would it be case of searching through the system to find irregular files.
    LVL 6

    Expert Comment

    I would run spybot search and destroy ( ) and/or tendmicro housecall. If you are in a business environment I would strongly recommend looking into openDNS. Its a free service and easy to setup and any type of junk you may be getting it will keep it off. I will serve as an anti spyware server in a sense.

    Author Comment

    Hi folks,
    Does anyone no anything about the following files and whether these could be the culprits?

    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - -?????

    She installed this but could get rid now:
    O16 - DPF: {96816368-C1E3-414D-A193-63C3CC921990} (MJPEGRender Control) -

    As these are two we pulled out of the Trendmicro hijackthis tool.


    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Highfive + Dolby Voice = No More Audio Complaints!

    Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

    As more computers now shipped with 64-bit version of Windows, more users are now using this Operating System.  So it's important to be aware how some 32-bit diagnostic tool works on these systems, so we know what to expect when analyzing the logs an…
    UPDATE - 6/15/2011 Added support for Release Update 6 Maintenance Patch 2 Point Patch 1 (RU6 MP2 PP1). Fixed a defect in the username field that was hard-coded to look for a specific domain (left over code from testing). This release will be the …
    how to add IIS SMTP to handle application/Scanner relays into office 365.
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now