New Posts  All Forums:Forum Nav:

virtumonde.dll

post #1 of 6
Thread Starter 
what is this? when i ran a scan with spybot it find this file and when i google it all i see is 'remove virtumonde.dll' or 'infection virtumonde.ll'
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
post #2 of 6
It's malware which installs advertisements/pop-ups on your machine. It is very difficult to remove, but here is the best method.

Disable system restore on the OS partition/drive. -->Use CCleaner and delete all temporary files.-->Download Spybot S&D and run it, Download Spyware Doctor and run it, Download Spysweeper trial and run it.

Finally use VundoFix and remove any .dll files still remaining. This has been the only successful way I've gotten rid of it and sometimes it won't always work so you'll have to do it manually.
Legendary
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6750 ASUS P5B Deluxe XFX 8600GT 2 x 2GB G.Skill PQ 
Hard DriveOSMonitorKeyboard
Seagate 250GB Windows 7 x64 Samsung 225BW Saitek Eclipse 
PowerCaseMouseMouse Pad
PC P&C Quad 750W Silencer Thermaltake Tsunami Dream Logitech MX518 Func 1030 
  hide details  
Reply
Legendary
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6750 ASUS P5B Deluxe XFX 8600GT 2 x 2GB G.Skill PQ 
Hard DriveOSMonitorKeyboard
Seagate 250GB Windows 7 x64 Samsung 225BW Saitek Eclipse 
PowerCaseMouseMouse Pad
PC P&C Quad 750W Silencer Thermaltake Tsunami Dream Logitech MX518 Func 1030 
  hide details  
Reply
post #3 of 6
After hours of trying to remove that virus from a friend's computer, I finally tried the boot-time scan in Avast Antivirus. It worked perfectly.
 
Server
(3 items)
 
 
CPUGraphicsRAMHard Drive
Intel Core i7-3540M Intel HD Graphics 4000 8GB G.SKILL Ripjaws DDR3 1600 Samsung 840 EVO 250GB SSD 
OSMonitorMouseAudio
Windows 10 Pro x64 14" at 1600x900 Logitech Anywhere Mouse MX FiiO E17 USB DAC amp 
CPUOSCase
i3-540 Debian 8 (Jessie) Cooler Master Elite 341 
  hide details  
Reply
 
Server
(3 items)
 
 
CPUGraphicsRAMHard Drive
Intel Core i7-3540M Intel HD Graphics 4000 8GB G.SKILL Ripjaws DDR3 1600 Samsung 840 EVO 250GB SSD 
OSMonitorMouseAudio
Windows 10 Pro x64 14" at 1600x900 Logitech Anywhere Mouse MX FiiO E17 USB DAC amp 
CPUOSCase
i3-540 Debian 8 (Jessie) Cooler Master Elite 341 
  hide details  
Reply
post #4 of 6
Thread Starter 
why disable system restore? what does that do? im just curious.

caus one thing i noticed was that my system restore points had been deleted and my firewall had been disabled
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
post #5 of 6
Quote:
Originally Posted by Field View Post
why disable system restore? what does that do? im just curious.

caus one thing i noticed was that my system restore points had been deleted and my firewall had been disabled
Deleting it prevents the virus from injecting itself into other restore points.
Waka waka waka
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom X4 II 955 BE @ 3.84GHz Biostar TA790GX A3+ Powercolor 5770 1GB (935/1280) Patriot 2gb DDR3 1333mhz 
Hard DriveOSMonitorKeyboard
WD 500GB SATA Win7 Ultimate 32-bit Acer H233H IBM Model M 
PowerCaseMouse
Coolermaster 550w Mozart TX Razer Deathadder 1800dpi 
  hide details  
Reply
Waka waka waka
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom X4 II 955 BE @ 3.84GHz Biostar TA790GX A3+ Powercolor 5770 1GB (935/1280) Patriot 2gb DDR3 1333mhz 
Hard DriveOSMonitorKeyboard
WD 500GB SATA Win7 Ultimate 32-bit Acer H233H IBM Model M 
PowerCaseMouse
Coolermaster 550w Mozart TX Razer Deathadder 1800dpi 
  hide details  
Reply
post #6 of 6
you could format your HDD and remember to stay away from porn sites

--unless you have FF+Linux
Workstation
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6400 @ 3.2GHz (400x8) Gigabyte GA-P965-DS3 GeForce 7600GT 2GB OCZ Gold 
Hard DriveOptical DriveOSMonitor
80GB Excelstor DVD+-RW 20X Slackware 20" Westinghouse LCD 
KeyboardPowerCaseMouse
ps/2 PC P&C 610W Silencer Rosewill Black optical 
Mouse Pad
none 
  hide details  
Reply
Workstation
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6400 @ 3.2GHz (400x8) Gigabyte GA-P965-DS3 GeForce 7600GT 2GB OCZ Gold 
Hard DriveOptical DriveOSMonitor
80GB Excelstor DVD+-RW 20X Slackware 20" Westinghouse LCD 
KeyboardPowerCaseMouse
ps/2 PC P&C 610W Silencer Rosewill Black optical 
Mouse Pad
none 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security