Hello and welcome to PCHF,
Look in your control panel's add/remove programs for
PuritySCAN By OIN, OuterInfo, OIN, Cowabanga, SnowballWars or similar. Click on it and then click remove.
Reboot and if found, delete this folder:
C:\Program Files\
PurityScan
If not listed, download and run this uninstaller:
http://www.outerinfo.com/OiUninstaller.exe
Outerinfo Network : Consumers : Uninstall Outerinfo
Tutorial for the uninstaller if needed
Reboot when done and if found, delete this folder:
C:\Program Files\
PurityScan
You should NOT use Combofix unless you have been instructed to do so by a Malware Removal Expert. It is intended by its creator to be used under the guidance and supervision of an expert,
not for private use. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.
If you have used Combofix before, please delete the version you have and redownload it again, because Combofix is being updated everyday.
Disconnect from the Internet while running ComboFix.
Temporarily disable any anti-virus and anti-malware real-time protection before performing a scan.
They can interfere with ComboFix or remove some of its embedded files which may cause unpredictable results.
Some scanners may see some combofix related components as suspicious and block or delete them while there's nothing wrong with them.
1. Download this file -
combofix.exe to your
Desktop.
Note:
It is important that it is saved directly to your desktop
2. Double click
combofix.exe & follow the prompts.
3. When finished, it shall produce a log for you,
C:\ComboFix.txt. Post the
ComboFix log and a fresh
Hijackthis log in your next reply.
Do
NOT post the ComboFix-quarantined-files.txt - unless I ask you to.
Do
NOT run ComboFix more than once.
Note:
Do not mouseclick combofix's window while it's running. That may cause it to stall
Do not run Combofix more than once.
In case you see a
sed.cfexe error with the option to send a report or not, choose "don't send".
The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.
Combofix should never take more that 20 minutes including the reboot if malware is detected.
If it does, open Task Manager then Processes tab (press ctrl, alt and del at the same time) and end any processes of findstr, find, sed or swreg, then combofix should continue.
If that happened we want to know, and also what process you had to end.
If you have
Norton Antivirus installed then disable script blocking so it will not interfere with the fix.
To disable Norton Script blocking Service:
* Disable the Script Blocking Service:
To open Services, click Start, point to Settings, and then click Control Panel.
Double-click Administrative Tools, and then double-click Services.
Find ScriptBlocking services, Right-click the service, and then click and then click Properties.
On the General tab, under Startup, click Disabled.
Under Service Status, click Stop button. Click Apply button.
* Disable the Script Blocking In Norton Settings:
Start Norton Antivirus.
Click Options. If a menu appears when you click Options, then click Norton Antivirus. The Norton Antivirus Options dialog box appears.
Click Script Blocking.
Uncheck Enable Script Blocking (recommended).
Click OK
You can reenable it afterwards when everything is clean again.
Trojan Hunter has been reported to detect combofix as Worm.Qiv.100.
Thanks.
PC Help Forum
» Security & Safety
» [Fixed] Hijackthis! Logs
»
oimfuskated
oimfuskated
Linear Mode
