Tech Support Forum - View Single Post - Trojan.Vundo -

sUBs · 10-09-2005, 01:43 AM

Please run VundoFix again.
This time round.. change the file paths of the files to be deleted

1st filepath - C:\WINDOWS\system32\vtutt.dll

2nd filepath - C:\WINDOWS\system32\ttutv.*

HijackThis fix these entries:

O2 - BHO: MSEvents Object - {6DD0BC06-4719-4BA3-BEBC-FBAE6A448152} - C:\WINDOWS\system32\vtutt.dll
O20 - Winlogon Notify: pmnno - C:\WINDOWS\SYSTEM32\pmnno.dll
O20 - Winlogon Notify: ssqrr - C:\WINDOWS\system32\ssqrr.dll (file missing)
O20 - Winlogon Notify: vtutt - C:\WINDOWS\system32\vtutt.dll

When you're done, do a re-scan with Hijackthis & post the log

10-09-2005, 01:43 AM	#4 (permalink)
sUBs Asst Manager Security, Expert Analyst, Moderator, Security Team; Rangemaster, Moderator, TSF Academy Join Date: May 2005 Posts: 24,479 OS: N/A	Please run VundoFix again. This time round.. change the file paths of the files to be deleted 1st filepath - C:\WINDOWS\system32\vtutt.dll 2nd filepath - C:\WINDOWS\system32\ttutv.* HijackThis fix these entries: O2 - BHO: MSEvents Object - {6DD0BC06-4719-4BA3-BEBC-FBAE6A448152} - C:\WINDOWS\system32\vtutt.dll O20 - Winlogon Notify: pmnno - C:\WINDOWS\SYSTEM32\pmnno.dll O20 - Winlogon Notify: ssqrr - C:\WINDOWS\system32\ssqrr.dll (file missing) O20 - Winlogon Notify: vtutt - C:\WINDOWS\system32\vtutt.dll When you're done, do a re-scan with Hijackthis & post the log __________________ Question - what have you done for the community today?