Results 1 to 2 of 2

Thread: Run away Explore.exe after virus infection

  1. #1
    dazs Guest

    Default Run away Explore.exe after virus infection

    Hello all,

    I've spent the day trying to clean-up my computer after a virus/trojan infection and now have an issue I can't nail down. If any one has an idea what is going on and how to fix it, your help would be greatly appreciated.

    My computer has been infected by several items, a worm identified as "win32.agent.icb" by spybot and "a.exe" and "nvaux32.dll" which AVG identifies a Klone. I believe they are all part of the same package.

    After working on these items today, I am getting a lot of changed modules/programs alerts by Zone Alarm Pro (ver Of particular concern is the behavior of Explorer.exe and svchost.exe Watching the Alert's log, Programs, Explorer.exe is trying to access the internet every minute or two without being prompted - so far there are over 400 "program access" alerts, all rated High threat. Here is exactly what is being logged:

    Rating, High. time, (multiple). Type: Program access. Program: explorer.exe. SourceIP, (blank). Destination IP: 127.0.01:4054. Direction: Outgoing (connect). Action Taken: Blocked. Destination DNS: 99% show "loopback" but several have tried to go to and

    Same info with the svchost.exe.

    I'm running a Toshiba laptop, Windows XP Home, updated with SP3, AVG antivirus, and ZA Pro.

    Any ideas?


    Operating System:Windows XP Home Edition
    Software Version:8.0
    Product Name:ZoneAlarm Pro

  2. #2
    Join Date
    Nov 2004

    Default Re: Run away Explore.exe after virus infection

    Hi!probably is better to radically clean your system by reformatting. This is the only way you can ensure you are clean.Otherwise run all the tools suggested in the link below (MBAM, Superantispyware, Drweb and A2....),Fax

    Click here for ZA Support
    Monday-Saturday 24x6 Pacific time
    Closed Sundays and Holidays

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts