|
Bugger.
Hey guys, I would appreciate some input here.
Recently I've started to get a popup error on Vista whenever I try to launch *anything*, Paint, Firefox, MSN, even the On Screen Keyboard. The error references a "yipavibo.dll" in System32, but on inspection of this folder, I found no trace of this .dll file; so I dont know if it was accidentally deleted or moved without my knowledge. I've tried a Google search, and there's absolutely nothing about it anywhere. I have thought of re-installing Vista, but this laptop was from PC World, and they hate giving out OS disks when you buy one of their computer systems. Would placing someone elses yipavibo.dll in the system folder solve this? |
yipavibo.dll?
that doesnt sound like a legit/true dll file to me.:hmmm: (if it where and it was a vista problem google would have gotten answers I found 1 result in google reffering to the malware Virtumonde) I know some trojan/virus create Dll's with the most silly names. in example the Virtumonde virus does that. you notice any System slow downs or pop ups? you might want to try to run a scan if possible. (what kind of AV are you running?) HunterICX |
A quick search showed only a bit - looked to indicate that the file is part of a ugly - Vundo to be exact. Its a trojan, and the reason you can't find much on the dll is because it drops a random named one in the system folder. Yours just happen to be one that has been noted before.
I would suggest a good antispyware/virus package, updated and run first off. Then a reg cleaner to remove orphaned entries. If you still have issues, then yes reinstall the OS, but make sure you format the drive first (don't do a "repair"). Good luck. |
Yeah, pretty sure its Vundo
I had that myself on the PC at work. a nasty bugger to remove but not impossible. http://en.wikipedia.org/wiki/Virtumonde HunterICX |
Run Windows Defender and see if it catches it.
|
As a guess I would say some virus scanner or malware scanner found and deleted the dll file, but left behind everything else particularly the registry entries.
You may have to finish the job by hand (or use a good scanner that will clear everything else, like spybot search&destroy). |
Okay guys thanks, I have Avast having a butchers around the place, AdAware, CCleaner, Spybot and Auslogics will be in line.
If it isnt a legitamate registry entry, how come every single program I open comes up with the error? |
It could be that the malware is tied into those programs somehow, or that it checks to see if its running when ever a new application is started.
No matter what though that isn't a normal .dll, and definitely not something they would all need to run, normally anyhow. |
Quote:
I ran a fix called ComboFix which removed the virus from the windows key files also use a Autorun Manager to disable&Remove these DLL's (they are easy to spot as the names are complete giggly goo) and work OFFLINE to make sure it doesn't come right back in. when I had this at work (Win XP) I used the following Spybot S&D - Detection and removal of minor files it could detect AVG8.0 Free - Same as above Combofix - remove the vundo from the windows key files Autorun Manager - to disable the malware DLL files and remove them (also to check if your system is clean again) and work offline ofcourse you might want to double check everything so scan your PC multiple times to make sure you got rid of it. HunterICX |
I had a .dll file that had a issue when starting up a while ago... Then it stoped...:hmmm: Havent knoticed any popups, or slowness.
|
|
| All times are GMT -5. The time now is 11:58 PM. |
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
Copyright © 1995- 2025 Subsim®
"Subsim" is a registered trademark, all rights reserved.