LONG TIME NO SEE EVERYBODY! First, wanted to say hello to everybody. I've been absent for a while. Now that we've got that out of the way... :) Came across a persistent little bug, and its presently giving me a headache. Does this look familiar to anyone: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ninr.exe (this is playing hide-and-seek, can't acutally seem to find it) O4 - HKLM\..\Run: [KavSvc] C:\WINNT\system32\vkviza.exe (of course, this comes back every time) O20 - Winlogon Notify: Shell Extensions - C:\WINNT\system32\mvj2l91o1.dll (the filename of the dll is random and comes back by a different name at reboot no matter how you kill it) Wondering if this rings any bells with any of you. Thanks. Nice to see all of you again. :) AOSCLAY PEBKAC, baby

try starting in safe mode, running spy aware and virus scanners, also search and manually delete files if needed, check temp folders and empty...:)

AOSCLAY, yes it has been a while. I have missed your colors. The two problems that you listed do not ring any bells. I would do a post at Suzi's "Spywarewarrior" site. They really specialize in "hijackthis" logs and they would probably recognize those two bugs.

This dll file: mvj2l91o1.dll reminds me of the L2me A.K.A the trasponder gang which is one of the hardest spyware to remove at the moment.You can remove it from your system with a few tools,and a little elbow grease. ____________________________________________ KIDCPU

Aosclay, This type of problem is usually your area of specialty but I know we all have our moments. However now that am done jerking your chain, I really believe you are overlooking a couple of things. One is system restore, and the other is that some of those nasties run from memory so you need something that can nuke 'em before windows loads or you may have to go into cmd prompt (had to do this once with real PITA file) to delete them, lastly you may be dealing with hidden file(s) here. Anyway the tools below ought to make thing a lot easier and faster too. 0. MoveOnBoot. 1. CrapCleaner. 2. Ad-Aware. 3. Spywareblaster. 4. Spybot S&D. 5. CWShredder. 6. HijackThis. 7. M$-AntiSpyware. Once you've got all those downloaded, before you do anything TURN OFF!! system restore and also go into msconfig and disable all startup items then reboot. Now go into folder options and unhide all files including system files and protected OS files too. Then perform a RAVScan on the PC and note the location of every errant file found, and use MoveOnboot to get rid of them. When you've removed every file scan the system until nothing is found. When you are convinced the system is completely clean, let system restore be the last thing that you turn back ON, I hope this helps you out. Goodluck. Do not type anything in this space.

hi aos, been away for sometime doing other things also but its always fun to come back and talk to old friends. how`s it going capt? long time no see. just a suggestion, if you come by that dll, try unregistering it so that it will not start up. all the best, murve