Suspect files in C:/windows/temp...???

solleyman

Senior member
Dec 5, 2002
271
0
76
I've got several, may 25, exe files with crazy jibberish names. Nearly every morning for the last 6-8 days, when I get on my comp, I have the little "error reporting" window up because one of the jibberish files needs to be shut down.

Do I have anythihng to be worried about here?

I've googled for most of these and there is zero matches.

Examples:

lbczplmy.exe
lobehzrb.exe
lqpmzbonxw.exe
mvyeclepis.exe
nauiryzmy.exe
nutzbcts.exe

Thanks.

- Sol

EDIT: There is a .tmp file in this folder that I cannot delete...it's in use. Any way to find out which program is using this file? - Thanks.
 

meltdown75

Lifer
Nov 17, 2004
37,548
7
81
My advice would be to run Ad-Aware, Spybot and CCleeaner. I doubt they'll survive through that.
 

montag451

Diamond Member
Dec 17, 2004
4,587
0
0
Add to that trojan hunter, and i would use kaspersky just to get rid of the problem, but wouldn't keep it installed as it has a nasty memory sucking part to the app. Otherwise, it is the best.

Disable system restore.
Run all the updated scan software - adaware/spybot etc in safe mode.
Reboot to safe mode again.
Scan with all the software again.
Reboot to normal mode.
Scan with all the apps again.

If there is anything there after that, throw the system in the sea.
 

solleyman

Senior member
Dec 5, 2002
271
0
76
I'm pretty religious about running adaware and spybot, but never ccleaner.

It found and delete 426 MB of files, including all of the above mentioned files.

Thanks.

- Sol
 

mechBgon

Super Moderator<br>Elite Member
Oct 31, 1999
30,699
1
0
1) Download a free 30-day trial of Kaspersky antivirus from http://www.kaspersky.com/trials.

2) Update it, set the real-time and on-access scanners for Maximum, and click Configure Updater and set it to use Extended Databases

3) Disable System Restore.

4) Reboot in Safe Mode and scan the system with Kaspersky antivirus.

5) Restart in normal mode, install Microsoft AntiSpyware Beta from http://www.microsoft.com, update it and run a full scan with that too.