Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

another hijack log

Started by washout , Jun 16 2005 10:53 AM

  • Please log in to reply

#1
washout
Posted 16 June 2005 - 10:53 AM

washout

    Member

  • Member
  • PipPip
  • 93 posts
ive been fighting nail.exe, and most recently that faggot of a [bleep] xmllib.dll.
all ive really been doing is naming empty notepad files between deletes so it cant write over it.
id like to get the [bleep]es done with.
soon or later this [bleep] has to be illegal or something.
ive got hijack down to barely nothing unless its adware/spyware.
whats left is the stuff that i remove and it just starts back up each scan.
ive also got that worm that renames its process with random characters.
thats a little [bleep] too.

Logfile of HijackThis v1.97.7
Scan saved at 12:50:44 PM, on 6/16/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\System32\SMSSU.EXE
C:\WINDOWS\System32\Tmntsrv32.EXE
C:\WINDOWS\System32\SMSSU.EXE
C:\WINDOWS\System32\Tmntsrv32.EXE
c:\windows\system32\bozmipz.exe
C:\PROGRA~1\Iomega\System32\AppServices.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\nvzvnk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://default.home
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://default.home
O2 - BHO: (no name) - {60371670-81B9-4d06-9C42-4DEC1AABE62B} - C:\WINDOWS\xmllib.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [KavSvc] C:\WINDOWS\System32\nvzvnk.exe reg_run
O4 - HKCU\..\Run: [SMSSU] C:\WINDOWS\System32\SMSSU.EXE
O4 - HKCU\..\Run: [Tmntsrv32] C:\WINDOWS\System32\Tmntsrv32.EXE
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macr...ash/swflash.cab

ive also got [bleep] on my msconfig startup that i remove, reboot, and it shows up again.
but first things first.
thanks to whoever jumps on this.
  • 0

Advertisements

#2
washout
Posted 16 June 2005 - 10:54 AM

washout

    Member

  • Topic Starter
  • Member
  • PipPip
  • 93 posts
oh and like i said ive got nail.exe which is tied to that aura [bleep].
help there too.
thanks much.
  • 0

#3
washout
Posted 16 June 2005 - 02:42 PM

washout

    Member

  • Topic Starter
  • Member
  • PipPip
  • 93 posts
ill choose my battles.
just saved all my [bleep] to an aux drive and reformatted that son[bleep].
  • 0
Back to Windows XP, 2000, 2003, NT · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Retired Forums
  3. Windows XP, 2000, 2003, NT

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP