yayaysqq.dll warning

[theoldthug]

Just got this warning today from avast that this file has a Win32.vitumonde-US trojan, when i said to put it in the chest it said that it was being used and couldnt be done.  So I hit the no action button, which said it wouldnt be activated.  Looks like it was created in feb 09 so not sure why it is just now telling me.  Any ideas.  it is in the windows\systems32 directory.

[Lisandro]

Are you using Windows XP/Vista?
Can you schedule a boot-time scanning?
Start avast! > Right click the skin > Schedule a boot-time scanning.
Select for scanning archives.
Boot.
If infected files are found, it's safer to send them to Chest instead of deleting them.
This way you can further analysis them.

Virtumonde is a very dangerous infector. Backup your documents and data asap.

[theoldthug]

I am using XP I did a scan and I moved all problems to chest.  I dont quite understand your instructions,

Start avast! > Right click the skin > Schedule a boot-time scanning.
Select for scanning archives.
Boot.

What does the boot mean? Do u mean do that and then restart computer or what?  I see scan local disks, scan archive files, then click schedule?  Does this reboot computer or what?  I also ran spybot and it did some removal.  I ran Avast and moved all to chest that it said.

[cinchez]

Boot means computer start up procedure: the process of starting or restarting a computer and loading the operating system^^

Boot+Scan=Boot scan^^

Restart ur PC if u want the boot scan to work^^

-AnimeLover^^

[Pondus]

Boot time Avast Antivirus Scanning

http://www.digitalred.com/avast-boot-time.php


How to video

http://video.google.com/videosearch?hl=no&q=avast+boot+scan&um=1&ie=UTF-8&ei=OihLSpX3EoXT-QbI_4zfBQ&sa=X&oi=video_result_group&ct=title#

[polonus]

Hi  theoldthug,

Here are vundo removal instructions: http://www.bleepingcomputer.com/virus-removal/remove-vundo-virtumonde

polonus

[John2009]

Vitumonde is Win32 Vundo, or MS Juan.