DLL errors

  • Thread starter Thread starter Baker
  • Start date Start date
B

Baker

When I start up my computer I get the following errors:

specified module could not be found:
C:\programfiles\peyumupo.dll
C:\windows\sikizela.dll
C:\windows\system32\helokubo.dll

What can I do to correct this?
 
When I start up my computer I get the following errors:

specified module could not be found:
C:\programfiles\peyumupo.dll
C:\windows\sikizela.dll
C:\windows\system32\helokubo.dll

What can I do to correct this?
Click to expand...

Hello

The /presence/ of those files would be proof of *major* malware
infestation. The fact that something can not find them is only a slight
comfort.

Start by downloading, installing, updating and running the freeware
versions of MBAM and SAS:

MBAM: <http://www.malwarebytes.org/mbam.php>
SAS: <http://www.superantispyware.com/download.html>

After, the state of your antimalware should be discussed.

When completed, please post a follow-up with your progress.

Pete
 
Baker wrote:
:: When I start up my computer I get the following errors:
::
:: specified module could not be found:
:: C:\programfiles\peyumupo.dll
:: C:\windows\sikizela.dll
:: C:\windows\system32\helokubo.dll
::
:: What can I do to correct this?
:: --
:: Baker


A quick google of the first one indicated virus -
http://www.google.com.au/search?hl=en&q=peyumupo.dll&meta=
and the 2nd one -
http://www.google.com.au/search?hl=en&q=sikizela.dll&meta=

You have a virus or multiple viruses and will need to clean your system -

For further assistance post to Security - Viruses NG

OE client -
news://msnews.microsoft.com/microsoft.public.security.virus
or
Web client -
http://www.microsoft.com/communitie...e99-3241-4584-87eb-b55d8ffb3c8c&lang=en&cr=us


--

TaurArian [MVP] 2005-2009 - Update Services
http://taurarian.mvps.org
======================================
How to ask a question: http://support.microsoft.com/kb/555375
Disclaimer: The information has been posted "as is" with no warranties
or guarantees and doesn't give any rights. Computer Maintenance:
Acronis / Diskeeper / Paragon / Raxco
 
Baker said:
When I start up my computer I get the following errors:

specified module could not be found:
C:\programfiles\peyumupo.dll
C:\windows\sikizela.dll
C:\windows\system32\helokubo.dll

What can I do to correct this?
Click to expand...

Those are components of high-risk (to your system) malware. One hit I
noticed mentioned virtu-mondo.

Since you're getting them as errors on startup, it sounds like something
tried to remove one or more viruses/malwares but couldn't/didn't also
clean the junk from the registry or startup or wherever they are being
called from. If the virus/malware etc. were active, you wouldn't get
those error messages.

Updating and scanning with your AV and spyware software might take care
of them and remove them. So I'd say the first thing to do is throw your
AV and spyware arsenal at them to see if they will clean things up.

If not, (or you could try this first), then it sounds like you could
simply locate and delete those files on your own. You already have
their locations, so they should be easy to delete. Once deleted you
should no longer get that starting messages you detailed.
If you get "access denied" mesages you might have to take posession
of each one in order to delete them. If you need help with that, just
come back and ask.

Once they're gone, Restart and repeat your AV and spyware scans just in
case they were covering something else up.

Cheers,

Twayne
----------------------
Threats: 321687 Latest updates: 26.2.2009, 12:24 AM
Top unsafe threats:
1. C:\Windows\System32\digeste.dll
2. C:\Windows\System32\olhrwef.exe
3. C:\Windows\System32\winlognn.exe
4. C:\Windows\System32\twex.exe
5. C:\Windows\System32\rs32net.exe


The filename HELOKUBO.DLL was last seen on 02.16.2009, and it is
considered unsafe.

Threat name Win32.X
Filename[System32Root]\helokubo.dll
FilesizeUnknown
Last seen02.16.2009
StatusKnown to RemoveIT Pro as unsafe.

This file can perform following behavior.
- Usualy created by unsafe process.

- Registered as a Dynamic Link Library File.

- Usualy have random filename and refers to many versions of a dynamic
link library.

- Can be injected/attached to the legitimate Windows process such as
explorer.exe or other.
 
Back
Top