Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

outerinfo & trojan problems [CLOSED]


  • This topic is locked This topic is locked

#1
crescentvalleygirl

crescentvalleygirl

    New Member

  • Member
  • Pip
  • 1 posts
I followed the directions in the outerinfo removal and this is my log after I ran superantispyware. I have been experiencing numerous popups even after taking to the computer shop for a complete cleanup! Would you please have a look and see if it got everything.

Thanks

SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 05/17/2008 at 01:46 PM

Application Version : 4.0.1154

Core Rules Database Version : 3463
Trace Rules Database Version: 1454

Scan type : Complete Scan
Total Scan Time : 00:59:42

Memory items scanned : 421
Memory threats detected : 3
Registry items scanned : 4469
Registry threats detected : 31
File items scanned : 61660
File threats detected : 279

Trojan.Unknown Origin
C:\PROGRA~1\COMMON~1\UIRM\UIRMM.EXE
C:\PROGRA~1\COMMON~1\UIRM\UIRMM.EXE
C:\PROGRA~1\COMMON~1\UIRM\UIRMA.EXE
C:\PROGRA~1\COMMON~1\UIRM\UIRMA.EXE
[uirm] C:\PROGRA~1\COMMON~1\UIRM\UIRMM.EXE
C:\PROGRAM FILES\COMMON FILES\UIRM\UIRMA.EXE
C:\PROGRAM FILES\COMMON FILES\UIRM\UIRML.EXE
C:\PROGRAM FILES\COMMON FILES\UIRM\UIRMM.EXE
C:\PROGRAM FILES\COMMON FILES\{1017855F-05D7-1033-0923-050508170001}\SYSTEM.DLL
C:\PROGRAM FILES\COMMON FILES\{1017855F-05D8-1033-0923-050508170001}\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC100\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC101\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC102\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC103\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC104\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC105\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC114\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC115\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC116\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC126\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC127\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC128\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC129\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC130\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC139\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC140\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC141\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC142\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC151\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC152\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC153\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC162\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC163\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC164\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC165\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC166\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC175\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC176\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC177\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC178\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC179\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC180\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC181\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC182\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC183\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC184\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC185\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC186\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC187\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC188\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC189\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC190\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC191\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC192\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC193\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC61\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC62\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC63\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC72\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC73\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC74\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC75\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC76\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC77\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC78\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC79\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC80\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC81\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC82\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC83\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC84\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC85\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC86\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC87\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC88\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC89\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC90\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC91\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC92\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC93\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC94\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC95\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC96\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC97\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC98\SYSTEM.DLL
C:\RECYCLER\S-1-5-18\DC99\SYSTEM.DLL
C:\RECYCLER\S-1-5-21-343818398-1957994488-725345543-1005\DC248.EXE
C:\RECYCLER\S-1-5-21-343818398-1957994488-725345543-1005\DC250.EXE
C:\WINDOWS\WW91CIBVC2VYIE5HBWU\QQ6YW21PWZPVKHC1VQO.VBS
C:\WINDOWS\Prefetch\UIRMA.EXE-1B69EE49.pf
C:\WINDOWS\Prefetch\UIRMM.EXE-29C76B04.pf

Unclassified.Unknown Origin/System
C:\PROGRA~1\COMMON~1\UIRM\UIRMD\UIRMC.DLL
C:\PROGRA~1\COMMON~1\UIRM\UIRMD\UIRMC.DLL
C:\PROGRAM FILES\COMMON FILES\UIRM\UIRMD\UIRMC.DLL

Trojan.Downloader-Gen/Update
[Siao] C:\PROGRA~1\COMMON~1\DOBE~1\MMC.EXE
C:\PROGRA~1\COMMON~1\DOBE~1\MMC.EXE
C:\DOCUMENTS AND SETTINGS\YASMINE\LOCAL SETTINGS\TEMP\SDEXE.EXE
C:\PROGRAM FILES\COMMON FILES\DOBE~1\MMC.EXE
C:\WINDOWS\Prefetch\MMC.EXE-49332033.pf

Unclassified.Unknown Origin
HKLM\Software\Classes\CLSID\{0BAA468F-DD41-FBEF-6F8C-F7AD7A7CB0CD}
HKCR\CLSID\{0BAA468F-DD41-FBEF-6F8C-F7AD7A7CB0CD}
HKCR\CLSID\{0BAA468F-DD41-FBEF-6F8C-F7AD7A7CB0CD}\InprocServer32
HKCR\CLSID\{0BAA468F-DD41-FBEF-6F8C-F7AD7A7CB0CD}\InprocServer32#ThreadingModel
HKCR\CLSID\{0BAA468F-DD41-FBEF-6F8C-F7AD7A7CB0CD}\Programmable
HKCR\CLSID\{0BAA468F-DD41-FBEF-6F8C-F7AD7A7CB0CD}\TypeLib
C:\WINDOWS\SYSTEM32\JHL.DLL
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BAA468F-DD41-FBEF-6F8C-F7AD7A7CB0CD}
C:\WINDOWS\WW91CIBVC2VYIE5HBWU\COMMAND.EXE

Adware.Tracking Cookie
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][4].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][3].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][5].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][5].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][1].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][2].txt
C:\Documents and Settings\Yasmine\Cookies\[email protected][4].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][2].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt
C:\Documents and Settings\Zach\Cookies\[email protected][1].txt

Adware.ClickSpring
HKLM\Software\ClickSpring
HKLM\Software\ClickSpring#UBWKR
C:\Program Files\PPATCH~1\XPLORE~1.EXE
C:\WINDOWS\SYSTEM32\FNHF.DLL

Trojan.NetMon/DNSChange
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR#NextInstance
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000#Service
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000#Legacy
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000#ConfigFlags
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000#Class
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000#ClassGUID
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000#DeviceDesc

Trojan.cmdService
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE#NextInstance
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000#Service
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000#Legacy
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000#ConfigFlags
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000#Class
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000#ClassGUID
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000#DeviceDesc

Adware.ClickSpring/Outer Info Network
C:\Program Files\Outerinfo\OiUninstaller.exe
C:\Program Files\Outerinfo
C:\DOCUMENTS AND SETTINGS\YASMINE\LOCAL SETTINGS\TEMP\NDR37.TMP.XML
C:\DOCUMENTS AND SETTINGS\YASMINE\LOCAL SETTINGS\TEMP\NDR3E.TMP.XML
C:\WINDOWS\Prefetch\OIUNINSTALLER.EXE-33ACA63E.pf

Rogue.SysCleaner
HKU\S-1-5-21-343818398-1957994488-725345543-1004\Software\WinTouch
HKU\S-1-5-21-343818398-1957994488-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Run#WinTouch [ C:\Documents and Settings\Yasmine\Application Data\WinTouch\WinTouch.exe ]

Adware.WinTouch/XInside
C:\Documents and Settings\Yasmine\Application Data\WinTouch\wintouch.cfg
C:\Documents and Settings\Yasmine\Application Data\WinTouch

Adware.Unknown Origin
C:\PROGRAM FILES\COMMON FILES\UIRM\UIRMD\CLASS-BARREL
C:\PROGRAM FILES\COMMON FILES\UIRM\UIRMD\VOCABULARY

Trojan.Downloader-Gen
C:\PROGRAM FILES\COMMON FILES\UIRM\UIRMP.EXE

Adware.ToolBar888
C:\PROGRAM FILES\COMMON FILES\{3017855F-05D8-1033-0923-050508170001}\888.DLL

Trojan.Downloader-Gen/Installer
C:\RECYCLER\S-1-5-21-343818398-1957994488-725345543-1005\DC247.EXE
C:\RECYCLER\S-1-5-21-343818398-1957994488-725345543-1005\DC249.EXE

Adware.ClickSpring/PuritySCAN
C:\WINDOWS\SYSTEM32\WAPIIT.EXE
C:\WINDOWS\SYSTEM32\WAPISVIT.EXE

Adware.Adservs
C:\WINDOWS\WW91CIBVC2VYIE5HBWU\ASAPPSRV.DLL
  • 0

Advertisements


#2
Rorschach112

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
Hello


Please visit this web page for instructions for downloading and running ComboFix

http://www.bleepingc...to-use-combofix

This includes installing the Windows XP Recovery Console in case you have not installed it yet.

For more information on the Windows XP Recovery Console read http://support.microsoft.com/kb/314058.

Once you install the Recovery Console, when you reboot your computer, you'll see the option for the Recovery Console now as well. Don't select Recovery Console as we don't need it. By default, your main OS is selected there. The screen stays for 2 seconds and then it proceeds to load Windows. That is normal.

Post the log from ComboFix when you've accomplished that, along with a new HijackThis log.
  • 0

#3
Rorschach112

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP