Help needed.

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I recently recieved spyware files that imbedded themselves in my system32
folder. The file names are ekrfb.exe and nbabbp.exe. I am unable to stop
process on these files, ekrfb.exe runs 3 at a time in the process tray, so
each file restarts itself. These files also keep me from being able to use
most of the explorer options, I'm unable to run any anti-spyware/virus
programs, if I attempt to run (spybot, system restore, manager) the files
kill my explorer.exe process, and I am left looking at just my wall paper.
I'm unable to log into my main user account because spybot automatically
starts. These files start in safe mode also.

Is there a way I can get all the programs to shut down at the same time? Is
there a way that I can get them to not start up? I'm lost here, and really
frusterated, please help. Thank You
 
On Thu, 24 Aug 2006 18:14:01 -0700, Jeffrey B <Jeffrey
I recently recieved spyware files that imbedded themselves in my system32
folder. The file names are ekrfb.exe and nbabbp.exe. I am unable to stop
process on these files, ekrfb.exe runs 3 at a time in the process tray, so
each file restarts itself. These files also keep me from being able to use
most of the explorer options, I'm unable to run any anti-spyware/virus
programs, if I attempt to run (spybot, system restore, manager) the files
kill my explorer.exe process, and I am left looking at just my wall paper.
I'm unable to log into my main user account because spybot automatically
starts. These files start in safe mode also.

Is there a way I can get all the programs to shut down at the same time? Is
there a way that I can get them to not start up? I'm lost here, and really
frusterated, please help. Thank You
Click to expand...


When the computer first boots up, tap F8 a few times and start up in
safe mode.

Move or rename the files <ekrfb.exe to ekrfb.old> and reboot.
 
Curtis Newton said:
On Thu, 24 Aug 2006 18:14:01 -0700, Jeffrey B <Jeffrey



When the computer first boots up, tap F8 a few times and start up in
safe mode.

Move or rename the files <ekrfb.exe to ekrfb.old> and reboot.
Click to expand...

It remakes itself. I know have in the folder an ekrfb.exe and an ekrfb.old,
same happened with the other file.
 
:

It remakes itself. I know have in the folder an ekrfb.exe and an ekrfb.old,
same happened with the other file.
Click to expand...


I would download and run hijackthis (google for it) and then post your
log. It will provide a display of running process and provide an easy
way to stop them.
 
Curtis Newton said:
I would download and run hijackthis (google for it) and then post your
log. It will provide a display of running process and provide an easy
way to stop them.
Click to expand...

Downloaded it,,,, as all the programs before it causes my explorer process
to end, and doesn't allow me to use the hijackthis program.
 
Downloaded it,,,, as all the programs before it causes my explorer process
to end, and doesn't allow me to use the hijackthis program.
Click to expand...


Weird.

Can you get to start ; run in Windows?

If so, I would next run 'msconfig' from the start - run line.

Click on startup tab and unselect the two or three files you are
referenced that are causing the problem and restart.

Still seeing the issue??
 
Curtis Newton said:
Weird.

Can you get to start ; run in Windows?

If so, I would next run 'msconfig' from the start - run line.

Click on startup tab and unselect the two or three files you are
referenced that are causing the problem and restart.

Still seeing the issue??
Click to expand...

Dang programs won't even let me run 'msconfig', from the run line, nor the
icon.
 
Dang programs won't even let me run 'msconfig', from the run line, nor the
icon.
Click to expand...

May be time for someone else to chime in (obviously, I am no help)
..... but, the next thing I would try is to get to a computer that
works and grab F-Prot for DOS (free), make a CD boot disk of the DOS
antivirus and boot off of it and run it in DOS mode (see URL for the
free version). Any luck?

http://www.f-prot.com/download/home_user/
 
Thanks man, that worked to find a few other programs, but didn't fix the
problem. So as a last ditch effort, I moved all programs that were created or
modified in my windows, system32 and c: drive. I did a power pull, and went
back into safe mode, and was able to use system restore after that.

Thanks a ton for your ideas and time.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Ubable to transfer a folder from Win XP to new Win 7 pc - please help 3
Need help finding Programs Files 3
Unable to copy & paste 2
Undeletable file. I'm stumped. 94
lots of problems 4
STOP 0xC000021A error 2
Downgrading from Windows 11 1
Help with 100% CPU at startup 2

Back
Top