Halp usrnet50.dll virus?

OzSTEEZ

¡ɟɟo ʞɔnɟ ʇunɔ 'ᴉO
Nov 11, 2008
34,694
9,024
473
39
Oz
Marklar
₥25,442.40
Marklar
M25,442
So I just restarted windows and once I logged in, this error message popped up.



Don't have a clue what that file is, so I pulled out the trusty ol' Google and typed in "usrnet50.dll".

I got absolutely NOTHING!

This is weird.

Help! :(
 

OzSTEEZ

¡ɟɟo ʞɔnɟ ʇunɔ 'ᴉO
Nov 11, 2008
34,694
9,024
473
39
Oz
Marklar
₥25,442.40
Marklar
M25,442
Now I just logged out, and then back in, and got this slightly different message.



Still can't figure out what the file is, or where it came from.
 

water

Flaccid Member
Oct 29, 2004
15,608
67
0
40
AZ
Marklar
₥272.20
Marklar
M272
I now know your C folder file structure. Now I will hack the gibson.

You have no chance to survive, make your time.
 

Josh

Biff Clurton
Oct 9, 2006
6,787
2,953
273
37
Marklar
₥6,122.72
Marklar
M6,123
1. update adobe acrobat reader if you use it, or switch to an alternative pdf viewer. PDFs are common ways of getting malware on your computer.
2. update java and flash for the same reasons.
3. stop using internet explorer. seriously, so many 0-days it isn't funny anymore. yes FF/opera/chrome have 0-days, but you don't have to wait over a month for a patch.
4. run antivirus if you are stupid enough to get a virus.

to clean up your pc:
i'd post my own guide/steps I use to clean my customer's computers, but is easier to just link to the 1 of thousand guides out there to remove malware:
http://hardforum.com/showthread.php?t=1426658

in conclusion, you have to be some kind of stupid to get a virus these days.
 

fly

Osharts 11
Oct 1, 2004
68,947
21,321
1,073
Marklar
₥46,624.23
Marklar
M46,624
Steam
mattressfish
1. update adobe acrobat reader if you use it, or switch to an alternative pdf viewer. PDFs are common ways of getting malware on your computer.
2. update java and flash for the same reasons.
3. stop using internet explorer. seriously, so many 0-days it isn't funny anymore. yes FF/opera/chrome have 0-days, but you don't have to wait over a month for a patch.
4. run antivirus if you are stupid enough to get a virus.

to clean up your pc:
i'd post my own guide/steps I use to clean my customer's computers, but is easier to just link to the 1 of thousand guides out there to remove malware:
http://hardforum.com/showthread.php?t=1426658

in conclusion, you have to be some kind of stupid to get a virus these days.
Actaully I don't think you'll find a 0 day for Chrome. I remember reading an article recently that at some browser hackathon, no one even attempted to target Chrome.

edit: And one of my coworkers got malware recently from visiting a site that had a malicious ad. He was using Firefox and didn't even click anything. 2 seconds later, IDSs are going off all over the place.
 
Last edited:

ppdk

Flaccid Member
Jul 20, 2010
1
0
0
Ontario, Canada
Marklar
₥0.00
Marklar
M0
USRNET50.dll tied to Connectify Service

I've got the same file in my appdata\local\ directory. It was detected by BitDefender as Gen:Variant.Xpuse.1 but BitDefender was unable to clean or delete the file.

In my investigations, I found a startup entry for usrnet50.dll, which I disabled through SpyBot. Then, I tried to delete the file manually, which failed.

However, the error message given to me when I tried to delete manually was enlightening. The file couldn't be deleted because it was in use by a program called Connectify, which is used to create a wifi hotspot through your laptop.

Since I did indeed download Connectify and was aware of its installation, I am going to leave usrnet50.dll alone.
 

OzSTEEZ

¡ɟɟo ʞɔnɟ ʇunɔ 'ᴉO
Nov 11, 2008
34,694
9,024
473
39
Oz
Marklar
₥25,442.40
Marklar
M25,442
Hmmm well this is strange then, as I'm having trouble with this file on my desktop PC which has no wireless abilities at all.

I wonder what else I could have installed that had this bundled in with it.




And welcome to the site ppdk!