Weird virus/spyware on my comp, help me get rid of it

Discussion in 'OT Technology' started by terminator1010, Jun 26, 2008.

  1. terminator1010

    terminator1010 Eld

    Joined:
    Dec 23, 2001
    Messages:
    4,891
    Likes Received:
    0
    Location:
    Hordanes Land
    A process called 4W7e83eV.exe opens at random times. It also causes an iexplore.exe process to run which opens random annoying advertisement webpages in internet explorer. I found the 4We83eV.exe file in my c:\windows\system32 directory and tried deleting it, but it always comes back. I've ran spyware doctor, spybot s&d, and adaware but they didn't find anything. Using XP pro. Anyone have any ideas what to try next?
     
  2. Doc Brown

    Doc Brown Don't make me make you my hobby

    Joined:
    Mar 31, 2006
    Messages:
    16,404
    Likes Received:
    0
    Location:
    Ohio
    A couple of things. First, turn off system restore.

    Then do all your scans in safe mode.

    Check for rootkits while you're at it.
    Sophos rootkit detector
    http://www.sophos.com/products/free-tools/sophos-anti-rootkit.html
    You have to register for it, but it's free and you can use fake info if you feel uncomfortable giving them your personal information.

    Also, look and see if there's a suspicious program running in your ad/remove program list.
    A lot of malware nowadays run as legit programs because you "let them" install.
     
  3. xuntilthexendx

    xuntilthexendx New Member

    Joined:
    Dec 3, 2007
    Messages:
    50
    Likes Received:
    0
    did you run any sort of anti-v? you should try out firefox..much more stable web browser.
     
  4. terminator1010

    terminator1010 Eld

    Joined:
    Dec 23, 2001
    Messages:
    4,891
    Likes Received:
    0
    Location:
    Hordanes Land
    I'll try that. I'm using Opera.
     
  5. trouphaz

    trouphaz New Member

    Joined:
    Sep 22, 2003
    Messages:
    2,666
    Likes Received:
    0
    wait a second. so it is possible to get malware/viruses while using Opera? could pottymouth be so wrong? lol.



    anyway, i agree with doc and xuntilthexendx. try safe mode and get an anti-virus proggy like AVG or Avast, both are free.
     
  6. terminator1010

    terminator1010 Eld

    Joined:
    Dec 23, 2001
    Messages:
    4,891
    Likes Received:
    0
    Location:
    Hordanes Land
    Ran Sophos, it didn't find anything. Checked the ad/remove programs list, nothing there that shouldn't be.
     
  7. Doomsday

    Doomsday XXX

    Joined:
    Mar 14, 2000
    Messages:
    14,902
    Likes Received:
    0
    Location:
    Minnesota
    try hijackthis
     
  8. Doc Brown

    Doc Brown Don't make me make you my hobby

    Joined:
    Mar 31, 2006
    Messages:
    16,404
    Likes Received:
    0
    Location:
    Ohio
    What about scans in safe mode, and shutting down system restore?

    Also, run hijack this like Doom said.
     
  9. Ameter

    Ameter Active Member

    Joined:
    Mar 31, 2005
    Messages:
    97,795
    Likes Received:
    1
    Location:
    Calgary, AB
    format c: usually works well
     
  10. terminator1010

    terminator1010 Eld

    Joined:
    Dec 23, 2001
    Messages:
    4,891
    Likes Received:
    0
    Location:
    Hordanes Land
    Ran Avast, it found that .exe file and some others and I put them in the chest. So far it seems to have done the trick. :x:
     

Share This Page