Opinion Needed

Discussion in 'Malware Help (A Specialist Will Reply)' started by bcavender, Sep 24, 2008.

  1. bcavender

    bcavender Private E-2

    I have this IExplorer Exploit that I have been fighting off and on for months. Someone went to great pains to make this one very difficult to remove. It is sad their life and talents are being completely wasted, when they are good enough to be running their own software company and driving a Porsche rather than wasting their life and the time of thousands of decent, real live people that they harm and never know. Enough philosophy...

    Its calling card in the Task List can be:

    sgcxcxxaspf0809.exe, mf.exe, mfrj.exe, as.exe, 123123.exe, 2.exe, etc.

    It must have a couple dozen or more files floating around the system that it uses to recover from cleanup attempts. (tmp, pdf, wmv, etc) It goes so far as to disallow IE to be deinstalled and if you delete iexplore.exe, it will recreate the file automatically just moments after you give it the deep six.

    This is an older 2000 SP4 system that I do video editing on and it is a massive pain/expense to upgrade. The system works fine otherwise so I really can't afford to replace it with business weakening.

    I can do enough to lock it down for a while, but I can't purge it completely. The antivirus/spyware software evidently doesn't find everything and the bugger just comes back.

    My question: Is there any kind of utility that will work with Windows where I can get inside the operating system and see everything that Windows does? I have tried Zone Alarm and others, but they evidently can't go low enough to see the code that is watching the IE folder waiting for me to delete it.

    I have searched several forums and haven't found this particular bug. Maybe I just need to chuck the old system and pay the piper ...

    Thoughts and suggestions would certainly be appreciated!

    Bruce

    :banghead
     
    bcavender, Sep 24, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    This is not malware. This is Windows reinstalling a necessary system file.

    No!! And there would be too much information for you to even look at and understand if there was such a program. There are various tools for monitoring the file system and the registry but you would be hard pressed to understand everything that is going on unless you are truly an expert in all aspects of the Windows operting system. And I suspect if you were an expert in this area, you would already know about some of these tools.

    If you really believe you have malware problems then do all of the below including attaching of the requested logs.

    Please follow the instructions in the below link and attach the requested logs when you finish these instructions.


    READ & RUN ME FIRST. Malware Removal Guide
    • If something does not run, write down the info to explain to us later but keep on going.
    • Do not assume that because one step does not work that they all will not.
    Notes:

    1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode. You can run steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
    2. If you have problems downloading on the problem PC, download the tools on another PC and burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection
     
    chaslang, Sep 26, 2008
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds