Prefetch cleaner 9 replies

Please wait...

Logi

-Analytical+

50 XP

12th January 2005

0 Uploads

620 Posts

0 Threads

#1 12 years ago

ok i have some damn spyware and its called win27a5.tmp.exe and the only place i find it is in my prefetch folder, everytime i clean it out and restart it comes back >< so i need to find out how to get rid of it for good

anyone?




RadioactiveLobster Forum Admin

Jeff is a mean boss

565,662 XP

28th July 2002

0 Uploads

53,138 Posts

1,332 Threads

#2 12 years ago

have you ran scans with programs like Ad-Aware, Spybot S&D, Windows Defender, etc??


If there is no image, Mikey broke something...



C38368

...burning angel wings to dust

50 XP

14th February 2004

0 Uploads

5,013 Posts

0 Threads

#3 12 years ago

You can disable the prefetch manually in the registry. That will at least keep the thing from loading itself into memory on boot. Then you'll need to dig it out manually at that point, but at least you won't have it running in the background on that account.




Logi

-Analytical+

50 XP

12th January 2005

0 Uploads

620 Posts

0 Threads

#4 12 years ago

ok so this is pissin me off, i installed spybot and adaware, and both havent found it, i dled an ATF cleaner and hijackthis, nothing can get rid of this junk, i did alil research and found out its from search assistant, but for microsoft, possibly >< but its actually a trojan horse, and i can find the horse to remove it, it just keeps making tmp (temp) files and trys to connect tothe net, anyone kno how to get rid of this crap??!




Julz_94

Headshot!!! Terrorists Win!!!

50 XP

23rd July 2006

0 Uploads

157 Posts

0 Threads

#5 12 years ago

Download a program call Ewido. Unfortunatly it's a trial but it will work good!




Logi

-Analytical+

50 XP

12th January 2005

0 Uploads

620 Posts

0 Threads

#6 12 years ago

wow, i dled it, installed it and like 30 second later it found it........ well see if it actually removes it tho :) thx julz




Julz_94

Headshot!!! Terrorists Win!!!

50 XP

23rd July 2006

0 Uploads

157 Posts

0 Threads

#7 12 years ago

Thats ok.... I hope it gets rid of it :)




Logi

-Analytical+

50 XP

12th January 2005

0 Uploads

620 Posts

0 Threads

#8 12 years ago

well now after i scanned twice it found a bunch more stuff and quantined it, but before it finished it kept on tryin t connect blah balh

in norton, it switched from always block to always allow and i didnt catch it and allowed it once, looked in my log files for hte ip of that instance and blocked it on all ports and such. so hopefully nothin got threw :(




Mastertech

I don't spend enough time here

50 XP

13th April 2003

0 Uploads

19 Posts

0 Threads

#9 12 years ago

Exe's should not be in that folder but this has nothing to do with the actual Prefetch files or the Windows Prefetcher. Do NOT clean the Prefetch folder, simply delete the infected file and do NOT disable Windows Prefetching. Nothing is loaded at startup in relation to prefetching, these are all Myths: XP Myths




marvinmatthew

Tech is where you'll find me..

50 XP

13th April 2005

0 Uploads

3,627 Posts

0 Threads

#10 12 years ago

If it was a trojan horse, I would go ahead and reformat.

You can never be totally certian that your system isn't comprosmised until you do a full reformat.