Hiya I have 2 problems,

1) The first is that I am having a problem with advertising banners on my explorer windows i jus them same one's all the time as if there's a virus on there for them! they even sometimes replace pictures for these banners!?

2) Looking in my task manager i see a executable under iexplorer.exe...however when i remove it it reappears. I can't remove it at all!?

Could someone please help me with this

I'd be very grateful

Many thanks

Hello smitz22,

Check for malware.

1)Run these online anti-virus scans:

*Panda Software ActiveScan http://www.pandasoftware.com/products/activescan/com/activescan_principal.htm

*Trend Micro Housecall http://housecall.trendmicro.com/ or

*Trend Micro Housecall (non-ActiveX) http://uk.trendmicro-europe.com/consumer/products/housecall_pre.php

2)Download, install, and run both of these anti-spyware programs:

*Lavasoft Ad-Aware http://www.lavasoftusa.com/support/download/

*Safer Networking Spybot Search & Destroy http://www.safer-networking.org/en/download/index.html

3)Download, install, and run one of these anti-trojan programs:

*Emisoft a-squared http://www.emsisoft.com/en/

*Mischel Internet Security TrojanHunter /downloads-file-83.html

hey k027,

thnks for your help...however after runnig those applications Iam still ahving the same problem with the banners!
would it help in anyway posting a screen shot of which baners i am on about?

Hello smitz22,

We need basic information:

Is this Windows Explorer, Internet Explorer, DeepNet Explorer, or...?

Need the correct name and version of the software involved.

Describe exactly what you are doing when you see these "banners".

Go ahead and post a screenshot - make sure that you add it as an attachment to your post. Include the information that you see when you right-click on the banner and then click "properties".

Are you still seeing the mysterious executable under task manager? If so, provide whatever information you have about it.

In the interim, you might make sure that you have turned off your messenger service:

http://www.grc.com/stm/shootthemessenger.htm

Hiya

Sorry for the late reply.

I have posted a screenshot and there's two banners that appear all the time. Though they do change from time to time...i.e. different colours. but these banners appear on so many pages. Funny thing is when I access my email on my sisters computer these banner aren't there![/img]

I use Maxthon browser version 1.2.5 build 20

I see these banners when i'm on the internet basically!

I still see that mysterious exe aswell (iexplorer.exe)

I've used Ad-Adware, Microsoft Anti Spyware, TrojanHunter, Spybot Search & Destroy, Spyware Blaster & NoAdware and yet nothing picks it up!? What am I doing wrong?

Hope this helps

Thanks

Clipboard01.jpg
Description:
Filesize:	209.47 KB
Viewed:	43 Time(s)

Hello smitz22,

You have the symptoms of RapidBlaster.

In order to help you we need a HiJackThis log.

You will be posting the HiJackThis log in the HiJackThis forum: /f67-Trend_Micro_HijackThis_Logs.html

Read the HJT forum posting rules: /t102301-Hijackthis_Guidelines_Read_Before_Posting.html

Download HiJackThis from : /downloads-file-328.html

Create a folder and unzip the HiJackThis download to the folder. Do not unzip the HiJackThis download to your Desktop or the Temp folder - it won't work.

Doubleclick "HijackThis.exe". First, update HiJackThis by pressing the "Config" button, then press "Misc Tools", followed by "Check for update online". If you downloaded an updated HJT, click "Yes" at the "Open the file?" prompt. If you did not update, press the "Back" button .

Press "Scan".When the scan is finished, use "Save Log" button and save the log as a text file. Its best to save your text file in the same folder as where you put HiJackThis.

DO NOT FIX ANYTHING YOURSELF UNTIL INSTRUCTED TO DO SO ONLY BY A CCSP EXPERT. MOST OF THE HJT LOG ENTRIES ARE NEEDED TO RUN YOUR COMPUTER. REMOVING THE NEEDED ENTRIES CAN CAUSE SERIOUS DAMAGE TO YOUR COMPUTER.

Post your log in the HiJackThis forum : /f67-Trend_Micro_HijackThis_Logs.html. Click "NewTopic" and simply copy/paste the HJT log into the textbox. Include the information requested in the HJT forum posting rules: /t102301-Hijackthis_Guidelines_Read_Before_Posting.html

Make sure your HJT log is posted only in the HiJackThis forum: /f67-Trend_Micro_HijackThis_Logs.html.

After you have posted your HJT log in the HiJackThis forum, please post, in this thread, a link back to your HJT log.

Hiya

Thanks so much for your help.

Here's the link to the log:

/p638279-My_HJT_Log.html#638279

Thanks again

This topic is now locked since the HJT log been posted in the HJT forum.