9. Explorer.Exe Virus :

We've found multiple infections in a few machines over the years. It's known as the dlder.exe Trojan and it drops another "explorer.exe" file in a separate folder,
normally in 'C:\Windows\explorer\Explorer.exe'.

Please note that you have a legitimate original
"explorer.exe" in 'C:\Windows\explorer.exe'

It also drops a startup file in your registry so it will run silently at startup...normally
in your Local Machine Registry: [HKLM\SOFTWARE\games\Clicktilluwin]. However; we have also found
the Clicktilluwin entry in ‘HKCU’ over the past few months. That said, you should do a search find on your total
registry for the phrase 'Clicktilluwin'. Go to the link above and follow cexx.org's manual removal, then search your
regedit for the 'Clicktilluwin' reg-key and you should be fine.

Anytime that you have explorer.exe running over....say....25,000K to 30,000K in the
task manager, it's usually indicative of infection.