vandy02
asked on
Windows XP virus - Locks computer up after login
I have a virus on my comuter that locks my computer up within about 10 seconds after I login. I saw that it actually starts a service within task manager called iexplorer.exe. I noticed this and I am able to stop it over and over again about every 30 seconds or so in the task manager, but I am not really able to do much and eventrually it wins and locks up again. It also prevents me from performing a System Restore as it only shows the current date. The only thing I can really do is run safe made with command prompt. So I was wondering if there is something I can run from the command prompt that would either find the virus or remove it? Perhaps find the service that is running?
Also, I had McAffee but removed it about a month ago because it was killing my computer with regards to resources. Obvioulsy, I should have gotten another virus protection.
Thanks
Also, I had McAffee but removed it about a month ago because it was killing my computer with regards to resources. Obvioulsy, I should have gotten another virus protection.
Thanks
If you really mean iexplorer.exe, then you for certain have an infected computer. iexplorer.exe is a virus. The Microsoft program for IE is iexplore.exe . ... Thinkpads_User
ASKER
Can you run malwarebytes from CommandPrompt and in the safe mode? I tried Norton but it cannot run the windows installer from the CommandPrompt and safe mode.
ASKER
Yes, it is iexplorer.exe
hi there, i would recommend you to download house call anti virus from http://housecall.trendmicro.com/ its a free virus scanner from trend micro. and also norman malware cleaner from http://www.norman.com/support/support_tools/58732/en .on another computer or from safe mode with network and scan your computer..god willing it will get cleaned...
Boot into safe mode with networking and try running malwarebytes. If it still dosn't run go into Malwarebytes program directory and rename Mbam.exe to bm.exe.
Note:
Update Malwarebytes before scanning and attach logfile here after.
Note:
Update Malwarebytes before scanning and attach logfile here after.
If you have to do a lot of heavy duty cleanup here, the chances are better than 50% that you will have to format and re-install the OS to get reliable operation. ... Thinkpads_User
ASKER
optoma:
I am unable to run with networking. The only way I can run anything is to use the command prompt and command prompt only. The Malware requires me to connect to the internet. Is there another application I can get?
Thanks
I am unable to run with networking. The only way I can run anything is to use the command prompt and command prompt only. The Malware requires me to connect to the internet. Is there another application I can get?
Thanks
What Operating System is the issued machine?
.......................... .......... .......... .......... .......... .
To get latest Malwarebytes updates:>install it on another machine and let it update.
Its updates are called "rules.ref" and are stored on machine.
You can copy rules.ref from updated machine and transfer it to issued machine through removable media>preferably burn it to a cd(read only access)
Rules.ref location:
XP:C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwareb ytes' Anti-Malware
Vista:C:\ProgramData\Malwa rebytes\Ma lwarebytes ' Anti-Malware\
PrograData is hidden by default so "show hidden files and folders"
.......................... .......... .......... .......... .......... ....
In safe mode with command prompt:
- Hit Ctrl+Alt+Del
-Select File, New Task,Browse
-You can then be able to copy updated rules.ref from removable media into relevant folder and then run Malwarebytes.
Make note of detections
..........................
To get latest Malwarebytes updates:>install it on another machine and let it update.
Its updates are called "rules.ref" and are stored on machine.
You can copy rules.ref from updated machine and transfer it to issued machine through removable media>preferably burn it to a cd(read only access)
Rules.ref location:
XP:C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwareb
Vista:C:\ProgramData\Malwa
PrograData is hidden by default so "show hidden files and folders"
..........................
In safe mode with command prompt:
- Hit Ctrl+Alt+Del
-Select File, New Task,Browse
-You can then be able to copy updated rules.ref from removable media into relevant folder and then run Malwarebytes.
Make note of detections
ASKER
XP -- Okay I will try this. Thanks!
VANDY02 ; y dont you try using a live xp cd and run r anti virus from there its is safe and if you know the name of your virus you can even delete it ....but be sure that is the ile to confirm serch it on google ..live xp ca be made at http://www.nu2.nu/pebuilder/ ..its easy ..and totaly works
ASKER
how do you find the name of the virus??
you cannot exactly find the name until you scan your system using any anti malware or anti virus ....so boot in live cd and scan your system and delete your suspected file....
@vandy02 ..i am on gtalk ...thedon924@gmail.com ...
ASKER
I think I am giving up on this one. I appreciate all the help, but I tried several where I was remving viruses, but not the virus causing the issue. I ended up taking my computer to an expert to get it fixed. Hopefully they can resolve the problem. Thanks again for the help.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Took computer in for repair
https://www.experts-exchange.com/articles/Software/Internet_Email/Anti-Virus/THINGS-YOU-NEED-TO-DO-WHEN-YOUR-PC-IS-INFECTED.html
https://www.experts-exchange.com/articles/Software/Internet_Email/Anti-Virus/CAN%27T-RUN-EXES-IN-AN-INFECTED-SYSTEM.html
https://www.experts-exchange.com/articles/Software/Internet_Email/Anti-Virus/Viruses-in-the-System-Volume-Information-System-Restore.html