Welcome to HBH V2 ! If you had an account on hellboundhacker.org you will need to reset your password using the Lost Password system before you will be able to login.

explorer.exe infected


ghost's Avatar
0 0

well, my computer is screwed again… I got some virus that infected explorer.exe .. so that every time I start it I get allot of boxes that say "YOU HAVE A VIRUS!" .. thats all they say then it crashes my computer after a few minutes … I can't close it with the task manager for some reason … virus=\ anyway is there anyway to restore it without torrent? lol I have ubuntu dual booted right now idk if it would help anything though because I have no idea what virus I have.. any help guys? you haven't failed me yet. The only reason I still want windows is so I can keep playing halo and other games


ynori7's Avatar
Future Emperor of Earth
0 0

By "every time I start it", I'm guessing you mean every time you start your computer since explorer.exe starts up with Windows. Did you try checking your startup folder? Might just be a batch file.


ghost's Avatar
0 0

yes, I mean every time it starts explorer.exe (startup) I looked and there wasn't anything there I also tried msconfig and still nothing out of the ordinary …


ynori7's Avatar
Future Emperor of Earth
0 0

Tried booting in safe mode and running a virus scan?


ghost's Avatar
0 0

thats disable too.. here are some things I forgot: *I run window$ xp *internet is disabled *safe mode disabled *almost no ram when windows is running *cant get to control panel *nothing is corrupt I see all the files from linux

I don't think there are any linux (ubuntu) compatible virus scanners for windows are there?


ynori7's Avatar
Future Emperor of Earth
0 0

Sounds like you're screwed. Just use Ubuntu to backup anything you want to keep and then reformat your Windows partition.


ghost's Avatar
0 0

*almost no ram when windows is running

MoshBat wrote: [quote]korg wrote: Download Combofix and follow the instructions here: http://www.bleepingcomputer.com/combofix/how-to-use-combofix That should get it. If not download hijackthis and post the log. Trojan Remover worked very well for me, should the above fail.[/quote] tried but can't get it installed in time =\ ynori7 wrote: Sounds like you're screwed. Just use Ubuntu to backup anything you want to keep and then reformat your Windows partition. I'll back everything up after I get my external hard drive back.. "reformat" ? how.. I can't get windows to work right and the whole point of keeping windows is to play mah games..


ynori7's Avatar
Future Emperor of Earth
0 0

game_freak wrote: I'll back everything up after I get my external hard drive back.. "reformat" ? how.. I can't get windows to work right and the whole point of keeping windows is to play mah games.. You don't do it from Windows. The hard drive you're reformatting has to be unmounted. Use a disc. By "reformat" i mean reinstall the operating system.


ghost's Avatar
0 0

ynori7 wrote: You don't do it from Windows. The hard drive you're reformatting has to be unmounted. Use a disc. By "reformat" i mean reinstall the operating system. disk broke anyway is there anyway to restore it without torrent? so, torrent.. =| If it comes to this I won't feel guilty, micro$oft rips me off all the time also not saying anyone condones pirating operating systems.. blah blah blah


ArgonQ's Avatar
Member
0 0

Basic, but worth a shot , use System Restore or last known good configuration. or check Temp folder for anything suspicious and try search with 'created date' and the day you got the virus as params. that may give you a handle on where the virus is.


ynori7's Avatar
Future Emperor of Earth
0 0

game_freak wrote: [quote] anyway is there anyway to restore it without torrent? [/quote] Just buy another then. I got mine for 10 dollars.


ghost's Avatar
0 0

you don't need to reformat. You can if you like though.

Do you have another computer that is working, one that you can make a bootable cd or thumb drive with? Also, have you tried booting into safemode? How long do you have after start up before it crashes (safemode/normal)?


ghost's Avatar
0 0

game_freak wrote: so, torrent.. =| If it comes to this I won't feel guilty, micro$oft rips me off all the time also not saying anyone condones pirating operating systems.. blah blah blah It's not pirating if you reinstall the exact same version that you already have(assuming you didn't get it illegally). ie you have xp pro, you can reinstall xp pro. That's the meaning of license.


ghost's Avatar
0 0

I dont know if it will work…

but there is antivirus available on linux that can scan your windows system right…

Like Clam AV or something…


ghost's Avatar
0 0

Clam AV had horrendous ratings, so it's not really recommended, although I suppose that it can't hurt. If you specifically don't want to use to use torrents I'm sure you can find a copy on rapidshare.


ghost's Avatar
0 0

www.katz.cd

I use XPlite, you may want to check it out if you're into gaming.


SySTeM's Avatar
-=[TheOutlaw]=-
0 0

Have you got the installation disk? If so, try boot up with the recovery console, to a WinPE (Windows Preinstallation Environment) shell, this gives you basic options like system restore, run command prompt, check for startup errors etc.

Occasionally there is a recovery partition which stores this WinPE, it's become standard in win7 but has also been seen in prior versions, so if you press F8 repeatedly on startup, you may be able to either try startup repair or recovery console.

Came in very handy for me when my win7 died.


korg's Avatar
Admin from hell
0 0

Don't reformat, boot your hard drive on another box and run combofix. You can also run HJT from other box. The HJT log will give an idea of what is going on. BTW. Is there any notifications it gives you to what virus or trojan is going on, like taking you to a website or asking to buy something.