Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Possible malware corrupting 'explorer.exe' [Closed]

Started by rffslow , Nov 20 2012 03:40 PM

  • This topic is locked This topic is locked

#1
rffslow
Posted 20 November 2012 - 03:40 PM

rffslow

    New Member

  • Member
  • Pip
  • 1 posts
First of all, sorry for my poor english :( I'm brazilian
Hey guys, just created the account to solve this possible problem... Today i've downloaded Assassins Creed III, and in the folder had a file which i tried to open and then showed up a message saying like the "Disk A: isn't availabe, could not access explorer.exe". After that, i've restarted the computer and ANYTHING was opening, any shortcut, nothing.

Kaspersky then detected a malware in "C:\Users\<username>\Drivers\explorer.exe". After that, kaspersky deleted all the threats and a full scan on reboot. Seems like the threat is gone, but the internet connection is clearly lagged. Something like 1000ms on Speedtest.

And too, one time the Origin disconnected me, warning me that "this account is in use by another computer". Crazy, but at least suspicious.
The name on Kaspersky is: UDS:DangerousObject.Multi.Generic

Thanks since now!

Here is the log from OTL:

Spoiler

  • 0

Advertisements

#2
blmadara
Posted 24 November 2012 - 02:06 PM

blmadara

    Trusted Helper

  • Malware Removal
  • 767 posts
Hi rffslow, welcome to Geeks to Go. My name is blmadara and I will be helping you with your problems. Please be patient with me as I am still in training and my responses will have to be reviewed by an expert before I can post them.

I'd like to go over some things that will help both of us.

  • Read each of my posts entirely before performing my instructions. It would be helpful if you printed my instructions so you can read and check the steps as you perform them.
  • Follow the steps exactly in the order posted.
  • Please don't be afraid to ask questions. If you don't understand something, let me know before continuing.
  • If you can't perform a certain step, or you're unsure about what to do, please stop and let me know.
  • It is very important that you stay with me until the end so we make sure that we have removed all the bad stuff.
  • Please don't attach any logs to your posts unless I request it. It is easier for me if you copy and paste the logs into your reply.
  • Finally, never fix anything using other programs on your own. This can hinder my ability to see what is wrong with your computer and make it harder to clean your computer.



Step One: Run OTL Custom Scan

Download OTL to your Desktop
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
services.*
qmgr.dll
consrv.dll
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
%Temp%\smtmp\1\*.*
%Temp%\smtmp\2\*.*
%Temp%\smtmp\3\*.*
%Temp%\smtmp\4\*.*
>C:\commands.txt echo list vol /raw /hide /c
/wait
>C:\DiskReport.txt diskpart /s C:\commands.txt /raw /hide /c
/wait
type c:\diskreport.txt /c
/wait
erase c:\commands.txt /hide /c
/wait
erase c:\diskreport.txt /hide /c
CREATERESTOREPOINT
  • Please select the Scan All Users checkbox.
  • Under Extra Registry heading, select Use Safelist.
  • Select LOP Check and Purity Check.
  • Then click the Run Scan button at the top
  • Let the program run unhindered, until it is done
  • Post the log it produces in your next reply.

Step Two: Run aswMBR

Download aswMBR.exe to your desktop.

  • Double click aswMBR.exe to run it.
  • When asked if you want to download Avast's virus definitions please select, No.
  • Click Scan to start the scan.
    Posted Image
  • When the scan ends click Save Log and save it to your desktop.
    Posted Image
  • Post the log in your next reply.

Step Three: Computer Symptoms

Please let me know what problems you are having with your computer.


What I need in your next post:
1. The reports from the OTL scan, OTL.txt and Extras.txt.
2. The log produced by aswMBR.exe.
3. Let me know what problems you are having with your computer.
  • 0

#3
Essexboy
Posted 28 November 2012 - 10:22 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP