Somehow, I've become my family and friend's computer fix-it geek...and lately I've had a lot of them sending me logs to help them fix Winfixer (which I can successfully do, no problem), but I keep seeing the file Explorer.EXE on at least 3 of their HijackThis logs and I'm wondering if this is the W32.MyDoom virus?
The files are not appearing in their Windows\System32 folder, but are appearing in Windows or the WINNT folder, depending on what system they're using. From what I've read, this could be MyDoom if not in the System32 folder.
I don't want to have anyone deleting a system file if it's not a virus. Is this a virus and if so, is this something easily removed by any of the Malware removers like Spybot S&D, Ad-Aware, or Microsoft AntiSpyware? If not, what steps should I tell them to take to remove this? I've got quite a few logs here with the same file, which is what's making me question whether or not it's a virus.
I would really appreciate the help if anyone has experience with this one!
Thank you![b]