~e5.0001

I can't delete this TEMP File ~e5.0001 and it keeps coming back when I play The Sims 2. Everytime I play The Sims 2 (Gotta Love It ) it minimizes itself like every two minuets. I believe that it is spyware, can anybody PLEASE help! This site has come through for me once, I hope it will help again!

 

If you think its Malware related then lets start by doing a General Cleanup.

First, please follow ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal


After doing ALL of the above if you still have a problem:


Download HijackThis 1.99.1

Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

Run HijackThis and save your log file.

Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

Need help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

 

Thanks for your response. My log is attached. Hopefully you can help!

 

First:
Go into Control Panel and open Add/Remove Programs. Uninstall the following:

WinTools

Second:
Please update to Hijack This 1.99.1 and attach a new log using the new version.

Third:
Please EXTRACT HijackThis from the ZIP File to a Safer location. Here's how:

To create a new folder:
Click START > My Computer > Local Disc C: > Program Files
Now, RightClick on an Empty Area and select New > Folder & name it HijackThis and ENTER

To Extract HijackThis:
Now, Right Click your HijackThis ZIP File and select Extract All > Next > and browse to your newly created HijackThis Folder
(C:\Program Files\HJT) and click Next.

Now run HJT from there. Please save your HJT Log as a .txt File and attach it via the "Manage Attachments" tool in the Additional Options section when you post.

The reason HJT needs its own safe folder is so that backups will be safely preserved. That way, if a mistake is made in the removal process, the mistakenly deleted entry can be restored.

 

Okay, thanks for working so quickly with me! I have the new version of HJT and everything in its Safe Folder

See Attached

 

Please EXTRACT HijackThis from the ZIP File to a Safer location. Here's how:

To create a new folder:
Click START > My Computer > Local Disc C: > Program Files
Now, RightClick on an Empty Area and select New > Folder & name it HijackThis and ENTER

To Extract HijackThis:
Now, Right Click your HijackThis ZIP File and select Extract All > Next > and browse to your newly created HijackThis Folder
(C:\Program Files\HJT) and click Next.

Now run HJT from there. Please save your HJT Log as a .txt File and attach it via the "Manage Attachments" tool in the Additional Options section when you post.

The reason HJT needs its own safe folder is so that backups will be safely preserved. That way, if a mistake is made in the removal process, the mistakenly deleted entry can be restored.

 

When I right click it it dosen't say EXTRACT ALL, I think it is already done....my log was in the last post.

 

Is there anything you can pull from the previous Log? BTW, I still appreciate your help. Just a little confused about the extracting because there is nothing to click that says 'Extract All' when I Right Click on HJT

 

You did the log right, you just ran HJT from the .zip file. Allow me a few moments to post you a fix. I have to run out a few minutes I will be back. Hang in there!

 

Thanks a lot for helping me!!!

 

Please print out these instructions so that you can operate with All Browser Windows CLOSED.

Please make sure System Restore is OFF and the Viewing of Hidden Files & Folders is Enabled as per the tutorial.


Now, look in Task Manager (Ctrl-Alt-Del) for the following running processes and, if you see any of them, try to END them:

TBPSSvc.exe

TBPS.exe

PIB.exe

IEXPLORE.EXE

Now scan with HijackThis and Check the Boxes for the following:

Make sure All Browser Windows are Closed when you Click FIX.

O2 - BHO: (no name) - {8952A998-1E7E-4716-B23D-3DBE03910972} - (no file)

O3 - Toolbar: &Search Toolbar - {339BB23F-A864-48C0-A59F-29EA915965EC} - C:\PROGRA~1\Toolbar\toolbar.dll

O4 - HKLM\..\Run: [TBPS] C:\PROGRA~1\Toolbar\TBPS.exe
O4 - HKLM\..\Run: [Uninstall_WinTools] C:\WINDOWS\Temp\WTuninst.exe /remove

O18 - Protocol: tpro - {FF76A5DA-6158-4439-99FF-EDC1B3FE100C} - C:\PROGRA~1\Toolbar\toolbar.dll

O23 - Service: WebSeach Toolbar support NT service (TBPSSvc) - Unknown owner - C:\PROGRA~1\Toolbar\TBPSSvc.exe

Again, make sure All Browser Windows are Closed when you Click FIX.

NOW:
Please boot into Safe Mode with the Viewing of Hidden Files & Folders Enabled and navigate to and DELETE the following if they should remain:

C:\Program Files\Toolbar ←–– Delete this whole folder if it exist!

C:\WINDOWS\Temp ←–– Delete everything in this folder!

NEXT:
Run CCleaner

Then, as an added precaution, Go to Start > Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin

And Click OK.

Reboot to Normal Windows , Scan with HijackThis and attach the new log.

 

Awesome, everything below is done! Here is my newest log! Thanks again and hopefull this will be over soooooon!

 

Click Start > Run > type services.msc and Click OK

Locate WebSeach Toolbar support NT service (TBPSSvc) and RightClick on it to bring up the Service Properties Window.
First: Stop the service by clicking the Stop Button.
Next: Disable it by changing the Startup Type to Disabled and click Apply

Reboot and post one final HJT log.

 

Okay, I am rebooting now...HJT Post in about 2 Mins

 

Here it is! : ) God you know a lot of stuff!!!

 

Your log is now clean!

Are you currently having any further problems?

 

Lemme check!

 

Awesome, everything is working great! Thanks so much for helping me tackle this problem! Amazing, really! I appreciate all of your help. It is crazy to think that I can get rid of a problem called ~e5.0001 without even touching anything called ~e5.0001 and getting rid of other problems in my computer. Once again, thanks a lot! CYA on my next conflict!

 

Your Welcome!

Glad everything is running good for you.

You should see this article on How to Protect yourself from malware!

 

Great article. I am going to try to keep things clean so I don't have a problem again- they make their way into the system so easily and un-noticed. One more question, how do you properly use CCleaner and basically what does it overall delete? I quickly did a scan and deleted everything during this problem, but I'd like to know more about it. Thanks again for always helping.

 

To run the program properly, simply run it and select Run Cleaner!

CCleaner is a cleaner for items such as:

Temporary Internet Files
Cookies
History
Recently Typed URL's
Index.dat Files
Last Download Location
AutoComplete Form History

Recent Documents
Run (in Start Menu)
Search Assistance Autocomplete
Other Explorer MRU's

Empy Recycle Bin
Temporary Files
Clipboard
Memory Dumps
Chkdsk File Fragments
Windows Log Files
Old Prefetch Data

We only recommend running the first two scans as the third "Issues" tab has been known to cause some minor problems.