bman21
asked on
command prompt restarts explorer.exe
I am unable to open the command prompt using start -> run -> cmd. When i do this, it restarts explorer.exe. However, when i do start->run->command the command propt opens up fine.
Your infected; or were infected at some point. The file is corrupted.
Run a file check on the O/S.
If you have an XP CD:
Click START, RUN, type in:
sfc /purgecache
(This ensures that system files are copied from your Windows installation media, and files which may be infected with malware or are corrupted are not copied from your drive.)
Then type in:
sfc /scannow
Have your XP CD handy.
If you don't have an XP CD:
Click START, RUN, type in:
sfc /scannow
Run a file check on the O/S.
If you have an XP CD:
Click START, RUN, type in:
sfc /purgecache
(This ensures that system files are copied from your Windows installation media, and files which may be infected with malware or are corrupted are not copied from your drive.)
Then type in:
sfc /scannow
Have your XP CD handy.
If you don't have an XP CD:
Click START, RUN, type in:
sfc /scannow
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
those are great answers, but replacing the file, and sfc /scannow wont clean the infection
you may want to look at this
http://www.bleepingcomputer.com/forums/topic215025.html
you may want to look at this
http://www.bleepingcomputer.com/forums/topic215025.html
I agree that there is most likely an infection and that needs to be done also.
ASKER
yes, it does restart explorer.exe when i run regedit. I'm not able to use a cd at the moment, i am working on this computer from a remote location. as soon as i can get the computer i will give LeeTutor's and bindnera's solution a try. Thanks for the quick response!
ASKER
also, on a side note. i was able to install avg free, but wasn't able to update it's virus database. I went ahead and ran avg, but all it found were the usual cookies and no infections (more than likely because the database can't be updated...)
ASKER
i went ahead and reinstalled my OS.
sounds like MS anti-virus 2009, malware program
Antivirus2009 (Antivirus 2009) Removal Instructions
Antivirus 2009 Descriptions:
Here we go again! Antivirus2009, also known as Antivirus 2009, is one of the latest counterfeit antispyware that devastates the Internet community. Antivirus 2009 is a clone of the infamous Antivirus 2008 that previously reported by us. Antivirus 2009 usually come up after you installed a video codec that come with Trojan, malware and virus. Antivirus 2009 normally generates fake and misleading system popup error messages so end-users will be tricked into purchase Antivirus 2009.
It is very important to remove all the components of of the Antivirus 2009 and all the malware and trojans that it might have come bundle with (such as zlob.trojan, trojan.vundo and Trojan.Downloader). To effectively remove Antivirus 2009, we have created a manual removal instructions which is easy to understand.
Manual Antivirus 2009 Removal Instructions:
Unregister Antivirus 2009 DLL Files:
(Learn how to do this)
shlwapi.dll
wininet.dll
Stop Antivirus 2009 Processes:
(Learn how to do this)
av2009.exe
Antivirus 2009.lnk
Uninstall Antivirus.lnk
Antivirus2009.exe
Find and Delete these Antivirus 2009:
(Learn how to do this)
av2009.exe
Antivirus2009.exe
shlwapi.dll
wininet.dll
Antivirus 2009.lnk
Uninstall Antivirus 2009.lnk
Remove Antivirus 2009 Registry Values:
(Learn how to do this)
HKEY_CURRENT_USER\Software \Antivirus
HKEY_LOCAL_MACHINE\SOFTWAR E\Antiviru s
HKEY_CURRENT_USER\Software \Microsoft \Windows\C urrentVers ion\Run\Antivirus = %ProgramFiles%\Antivirus 2009\Antvrs.exe
You can try this article xpantivirus-2009-removal-g uide/other software this one remove-antivirus-2009/othe rsoftware
You can also download Kaspersky antivirus, Kaspersky Anti-Virus Products
You can also download the free version of Avira Antivir to remove the spyware (update) to remove the spyware (update) another option are this one: MaleWareBytes antivirus
Antivirus2009 (Antivirus 2009) Removal Instructions
Antivirus 2009 Descriptions:
Here we go again! Antivirus2009, also known as Antivirus 2009, is one of the latest counterfeit antispyware that devastates the Internet community. Antivirus 2009 is a clone of the infamous Antivirus 2008 that previously reported by us. Antivirus 2009 usually come up after you installed a video codec that come with Trojan, malware and virus. Antivirus 2009 normally generates fake and misleading system popup error messages so end-users will be tricked into purchase Antivirus 2009.
It is very important to remove all the components of of the Antivirus 2009 and all the malware and trojans that it might have come bundle with (such as zlob.trojan, trojan.vundo and Trojan.Downloader). To effectively remove Antivirus 2009, we have created a manual removal instructions which is easy to understand.
Manual Antivirus 2009 Removal Instructions:
Unregister Antivirus 2009 DLL Files:
(Learn how to do this)
shlwapi.dll
wininet.dll
Stop Antivirus 2009 Processes:
(Learn how to do this)
av2009.exe
Antivirus 2009.lnk
Uninstall Antivirus.lnk
Antivirus2009.exe
Find and Delete these Antivirus 2009:
(Learn how to do this)
av2009.exe
Antivirus2009.exe
shlwapi.dll
wininet.dll
Antivirus 2009.lnk
Uninstall Antivirus 2009.lnk
Remove Antivirus 2009 Registry Values:
(Learn how to do this)
HKEY_CURRENT_USER\Software
HKEY_LOCAL_MACHINE\SOFTWAR
HKEY_CURRENT_USER\Software
You can try this article xpantivirus-2009-removal-g
You can also download Kaspersky antivirus, Kaspersky Anti-Virus Products
You can also download the free version of Avira Antivir to remove the spyware (update) to remove the spyware (update) another option are this one: MaleWareBytes antivirus
Orginal link to
answer above,
http://www.windowsvistaplace.com/antivirus2009-antivirus-2009-removal-instructions/spyware-removal
answer above,
http://www.windowsvistaplace.com/antivirus2009-antivirus-2009-removal-instructions/spyware-removal
you may want to look at this
http://www.bleepingcomputer.com/forums/topic215025.html