explorer.exe using all cpu resources

Discussion in 'Malware Help (A Specialist Will Reply)' started by i8dacat, Nov 27, 2005.

  1. i8dacat

    i8dacat Private E-2

    First off thanks for taking the time to read this.
    Here's my problem. Recently i've been experiencing a major slow down in performance in my computer. I hit ctrl+alt+del check proccesses and notice that explorer.exe is using up 99% cpu. This usually occurs right when I start up the comp.
    I've downloaded the suggested files ran them, cleaned out a few spyware stuff and still the problem occurs. So im proceeding to the next step to hopefully solve this problem. Here is my hijack log. thanks for the help.
     

    Attached Files:

    i8dacat, Nov 27, 2005
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You have a Virtumonde infection. Work thru the steps in the below link. The lines from your log that you will need to know while working thru that link are:

    O2 - BHO: MSEvents Object - {B313D637-F405-4052-AC37-E2119AB3C8F8} - C:\WINDOWS\system32\pmnlj.dll
    O20 - Winlogon Notify: pmnlj - C:\WINDOWS\system32\pmnlj.dll


    Virtumonde aka Trojan Vundo Fix w/ Tool
     
    chaslang, Nov 27, 2005
    #2
  3. i8dacat

    i8dacat Private E-2

    ok, I've run the instructions written for the virtumonde. It seems to have gotten rid of my problem. Just incase i missed anything, here is my hijack log update.
     

    Attached Files:

    i8dacat, Nov 27, 2005
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Just some minor cleanup remains!

    Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
    O2 - BHO: MSEvents Object - {B313D637-F405-4052-AC37-E2119AB3C8F8} - C:\WINDOWS\system32\pmnlj.dll (file missing)
    O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O20 - Winlogon Notify: pmnlj - C:\WINDOWS\system32\pmnlj.dll (file missing)

    After clicking Fix, exit HJT.

    After this you should be good to go! Check out the below too:

    How to Protect yourself from malware!
     
    chaslang, Nov 27, 2005
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds