Hi there,
I recently attempted to an AdAware scan, but as soon as the scan stats a pop up appears stating the computer must terminate and it shuts down.

I've attempted a few other programs but none seem to do the job as well.

Any help would be much appreciated.

Tom

Attached Files

hijackthis.log (18.0 KB, 4 views)

Hya Tom, welcome to PCHF.


First look in your add/remove programs for any of these:

Oin
OuterInfo
Yazzle by OIN
Cowabanga by OIN
PuritySCAN By OIN
Snowballwars by OIN
ipwins
Zolero
Tizzletalk
MediaTickets
Forethought
Quicklinks
or anything similar with Oin or Outerinfo in it.


If any of those names are found, click on it, and click remove.
Reboot and delete this folder if found:
C:\Program Files\PurityScan

If not listed, download and run this uninstaller:
http://www.outerinfo.com/OiUninstaller.exe
Tutorial for the uninstaller if needed:
Uninstaller
Reboot when done and delete this folder if found:
C:\Program Files\PurityScan




Run HijackThis , select to do a "system scan only" and then place a check beside each of the following:

Now first close all windows and browsers other then HiJackThis , then click fix checked and close HijackThis.

Manually delete this file:

C:\WINDOWS\System32\tfxshde.dll

Reboot your pc, and post a new HJT log please.

Hey thanks for a quick response, sorry mine's a bit slow.

Here's that new log, but are all those O18 Logitech protocols normal?

Thanks, Tom.

Attached Files

hijackthis.log (17.3 KB, 1 views)

Yes and no, they are normal for the Logitech desktop messenger but it shouldn't create so many entry's. I don't know why it does that but you can uninstall it without problems in add/remove programs to get rid of it if you want.


Did you find any of these in add/remove programs?

Oin
OuterInfo
Yazzle by OIN
Cowabanga by OIN
PuritySCAN By OIN
Snowballwars by OIN
ipwins
Zolero
Tizzletalk
MediaTickets
Forethought
Quicklinks
or anything similar with Oin or Outerinfo in it.

And if not, did you download and run the Purityscan uninstaller? It's still there I'm afraid.

Let's try it an other way:

1. Download this file - combofix.exe
2. Double click combofix.exe & follow the prompts.
3. When finished, it shall produce a log for you. Post that log in your next reply

I didn't find any of the following
Oin
OuterInfo
Yazzle by OIN
Cowabanga by OIN
PuritySCAN By OIN
Snowballwars by OIN
ipwins
Zolero
Tizzletalk
MediaTickets
Forethought
Quicklinks
or anything similar with Oin or Outerinfo in it.

and I ran the Purityscan uninstaller.

Heres that log from Combofix.

Cheers for all the help

Attached Files

ComboFixLog.txt (9.5 KB, 3 views)

Please copy the text in the code box below, and paste it into a blank notepad window.
Save it as Fix.reg and in the "save as" type box choose "all files".
Once you have saved it, double click it, and allow it to merge with the registry.

Download Pocket Killbox:
http://www.atribune.org/downloads/KillBox.exe

Start Killbox and place a tick next to [x]delete on reboot.
And press the "all files" button. (just above the yellow triangle)
Copy this list into the windows clipboard:
(highlight the text , and select "copy")


C:\WINDOWS\unvise32.exe
C:\Documents and Settings\Tom\Application Data\GDIPFONTCACHEV1.DAT
C:\WINDOWS\system32\oins.exe
C:\WINDOWS\system32\wabay.bak1
C:\WINDOWS\system32\dvdplay.dll
C:\WINDOWS\system32\qommnom.dll
C:\WINDOWS\bwUnin-7.2.0.157-8876480SL.exe


Back in Killbox go > file > paste from clipboard,
Click the red highlighted X button and say yes to the prompt, then click OK.

Exit Killbox and restart your PC.


Post a new HJT log when done please.

Ok, that's all done, here's that log.

Attached Files

hijackthis.log (17.1 KB, 3 views)