I have this virus (atleast i think its a virus) thats on my computer that keeps restarting it. You know that window that comes up and says i have 60 seconds then it restarts, well that comes on every time i open up the internet. My kaspersky antivirus can't seem to find it but i think its this thing in my system32 folder called explorer.exe My kaspersky blocks explorer.exe if i say to deny it (because if i allowed it my computer lags like hell so i deny it) but the window for restarting won't come up if i do that. I wanna get rid of this virus and this explorer.exe file (assuming they are different but they could be the same).
Oh i have already tried reformatting and repairing my computer and those didn't work, its still here. I even tried deleting my windows xp then putting HDloader on the HDD then reformatting it windows xp (that got rid of 2 other really pissing viruses but theres still the 3rd one left to get rid of).
As one more side note. I keep getting this window that says i should download stuff to repair my registry or something like that. The window is called Messenger Service.
Just a word of note, the location you mentioned for explorer.exe is not the correct location for the genuine file, Explorer.exe is normally found in the C:\WINDOWS folder. You can verify this by right clicking on the genuine file and looking at the file properties then select the version tab, the genuine file will say Company - Mircosoft Corporation.
Edit: Also it sounds very much like your system is not up to dates with updates, the messenger service (if I am correct) was not active after installing SP2, Installing SP2 would help keep the system free and close up other vital security holes but note that only ever install it on a clean system, if you install it on an infected computer your problems will be magnified.
Originally posted by sjb007:Just a word of note, the location you mentioned for explorer.exe is not the correct location for the genuine file, Explorer.exe is normally found in the C:\WINDOWS folder. You can verify this by right clicking on the genuine file and looking at the file properties then select the version tab, the genuine file will say Company - Mircosoft Corporation.
Edit: Also it sounds very much like your system is not up to dates with updates, the messenger service (if I am correct) was not active after installing SP2, Installing SP2 would help keep the system free and close up other vital security holes but note that only ever install it on a clean system, if you install it on an infected computer your problems will be magnified.
Ok thx for letting me know where the original explorer.exe file is but i do have another one in my system32 folder. I guess the one in my system32 folder is a virus. So how does this HjT thing work. I dunno what u mean by it.
