1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Active Virtumonde and error loading salizuya and vorosuka

Discussion in 'Malware and Virus Removal Archive' started by aoa545, 2009/06/03.

Page 2 of 2
  1. 2009/06/13
    Geri Lifetime Subscription

    Geri Inactive Alumni

    Joined:
    2003/03/02
    Messages:
    4,580
    Likes Received:
    7
    Hi
    OK some more questions.

    Tell me if you know what any of these are.

    c:\documents and settings\administrator\application data\Beelzebub

    Hidden/Locked Files << All these in this section of the RootRepeal log.-------------------
    Path: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\sentros99@hotmail.com\SharingMetadata\dennyng1989@ hotmail.com\DFSR\Staging\CS{6A4151D8-99A8-04D7-D0A3-0D64BF42AEE6}\01\18-{6A4151D8-99A8-04D7-D0A3-0D64BF42AEE6}-v1-{C0E4F51C-0D0C-42F8-997B-917A56CF1FAC}-v18-Downloaded.frx
    Status: Locked to the Windows API!

    Now please do this.

    Upload a File to Virustotal
    Please visit Virustotal
    • Click the Browse... button
    • Navigate to these files one at a time.
      c:\program files\imgctl.dll
      c:\program files\wuvorbis.dll
      c:\windows\system32\salizuya.dll
      c:\windows\system32\vorosuka.dll
    • Click the Open button
    • Click the Send button
    • Copy and paste the results back here please.

    Thanks
    Geri
     
    Geri,
    #21
Page 2 of 2

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...