Active Explorer.EXE and IEXPLORE.EXE virus

I forgot to mention, I uninstalled ComboFix (ComboFix /u) since Avira keeps on prompting about a Trojan which is attached to the program. However, while in the process of uninstallation, message appeared that a suspicious file was trying to attach to C:\ProgramFiles\Common Files\Logitech\LVMVFM\LVPrclnj.dll. I want to make my computer clean.
Thanks for the assistance

 

Did you try right clicking the connection and selecting repair?
View the Status of the connection, Support tab then Details button and tell me what the addresses are for IP, Gateway and DNS Server.

Please open Spybot in Advanced mode then select the tools option.
Select View Report in the left column, then View Previous Report in the main window.
Selct the latest Fixes.*****.txt file (* = date and time of scan)
Copy the contents of that log and post it here.
If necessary, save it to notepad and transfer it to the computer you're using to post.


The Logitech file is part of the QuickCam software. It actually the LVPrclnj.dll file being injected into other processes. See here.

 

[Active] Explorer.EXE and IEXPLORE.EXE virus

noahdfear,

Yes, I tried to repair it but still the same. The IP Address is 169.254.185.178. Default Gateway and DNS Server are blank.

Here is the Spybot log done last 12-24-08:


--- Report generated: 2008-12-24 08:45 ---

Hint of the Day: Click the bar at the right of this to see more information! ()


WildTangent: [SBI $3A3BDC07] Program directory (Directory, fixing failed)
C:\WINDOWS\wt\

WildTangent: [SBI $DD0C3EA6] Settings (Registry value, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Java VM\ClassPath=...;C:\WINDOWS\wt\webdriver\wtdmmpi.jar...

WildTangent: [SBI $76830867] Program directory (Directory, fixing failed)
C:\WINDOWS\wt\wtupdates\

WildTangent: [SBI $6599E86A] Program directory (Directory, fixing failed)
C:\WINDOWS\wt\wtupdates

AdRevolver: Tracking cookie (Internet Explorer: Kristina Formanes) (Cookie, fixed)


Right Media: Tracking cookie (Internet Explorer: Kristina Formanes) (Cookie, fixed)


AdRevolver: Tracking cookie (Internet Explorer: Kristina Formanes) (Cookie, fixed)



--- Spybot - Search & Destroy version: 1.6.0 (build: 20080707) ---

2008-07-07 blindman.exe (1.0.0.8)
2008-07-07 SDFiles.exe (1.6.0.4)
2008-07-07 SDMain.exe (1.0.0.6)
2008-07-07 SDShred.exe (1.0.2.3)
2008-07-07 SDUpdate.exe (1.6.0.8)
2008-07-07 SDWinSec.exe (1.0.0.12)
2008-07-07 SpybotSD.exe (1.6.0.30)
2008-09-16 TeaTimer.exe (1.6.3.25)
2008-12-23 unins000.exe (51.49.0.0)
2008-07-07 Update.exe (1.6.0.7)
2008-10-22 advcheck.dll (1.6.2.13)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2008-09-15 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2008-10-22 Tools.dll (2.1.6.8)
2008-11-04 Includes\Adware.sbi (*)
2008-12-22 Includes\AdwareC.sbi (*)
2008-06-03 Includes\Cookies.sbi (*)
2008-09-02 Includes\Dialer.sbi (*)
2008-09-09 Includes\DialerC.sbi (*)
2008-07-23 Includes\HeavyDuty.sbi (*)
2008-11-18 Includes\Hijackers.sbi (*)
2008-12-22 Includes\HijackersC.sbi (*)
2008-12-09 Includes\Keyloggers.sbi (*)
2008-12-22 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2008-11-18 Includes\Malware.sbi (*)
2008-12-22 Includes\MalwareC.sbi (*)
2008-12-16 Includes\PUPS.sbi (*)
2008-12-16 Includes\PUPSC.sbi (*)
2007-11-07 Includes\Revision.sbi (*)
2008-06-18 Includes\Security.sbi (*)
2008-12-16 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2008-12-10 Includes\Spyware.sbi (*)
2008-12-10 Includes\SpywareC.sbi (*)
2008-06-03 Includes\Tracks.uti
2008-12-23 Includes\Trojans.sbi (*)
2008-12-22 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll



Ok. I'll check the Logitech link. Thanks.

 

Suggest you open the Device Manager then right click the wireless network adapter and Uninstall it, then reboot. It should be detected and reinstalled automatically, though you will likely be required to re-enter the security key to connect.

 

[Active] Explorer.EXE and IEXPLORE.EXE virus

noahdfear, i uninstalled the wireless device manager, the reboot. i was able to connect to the wireless network i am using but still, low or no connectivity.

 

What are the IP and DNS addresses showing now?

 

[Active] Explorer.EXE and IEXPLORE.EXE virus

IP Address: 169.254.228.187. DNS Server is still blank

 

Download WinsockFixWinAll from Digital Minds International. Scroll down to Utilities where you will find;

Transfer the file to the ailing computer. Double click WinsockFixWinALL.exe to run it, then click Repair Winsock.
When finished it will open a log after you've clicked OK to the reboot reminder prompt.
Close the log, exit the utility then reboot.

 

Done with Repair Winsock then reboot but still low or no connectivity. The other laptop Im using right now is able to connect to the wireless connection. Did I do something wrong? Thanks a lot

 

Is the working laptop using a proxy as well?

 

i am using wireless connection for both laptops, connecting directly from the linksys router. i also had low or no connectivity before but that was after i installed norton in my laptop. but also uninstalled it afterwards and was able to reconnect successfully to the network. thinking that it might be caused by spybot, i tried to uninstall it but i was prompted that some files are missing. dont know what to do now!