oikocw.exe

Hello,

ive probably been dealing with this for a few days, mainly with iTunes support telling me to do some stuff. But they basiclly stopped the support once I figured out what wasnt letting iTunes open. Its a start-up item in msconfg and its Unlisted on Symantec, Google, etc. So I have pretty much no where but here to go for help. Ive ran multiple scans in programs, (Adware S&E, Microsoft Antispyware, Nortan Internet Security, etc) but with no change. I even looked where the file was suppost to be placed, C:/WINDOWS/SYSTEM_32/oikocw.exe, and it wasnt there.

Thanks for any help given,
Alex

 

Please see the below thread, then attach a current HJT log.
http://www.majorgeeks.com/images/grenade.gif Downloading, Installing, and Running HijackThis

 

Here ya go. (P.S.: The file name isnt in the log anywere.)

 

Please see the below thread on how to install and run Spy Sweeper.

Running Spy Sweeper...

 

All done. One problem, for some reason, Spy Sweeper gets stuck on scanning/sweeping a cookie, and wont skip it or sweep it, in other words, it just keeps sweeping it.

Edit: It scans roughly 100,000 files/folders until that point.

 

Please see the below thread on how to install and run Ewido Security Suite.

Running Ewido Security Suite ...

 

Here is the Ewido report.

 

Now please attach a fresh HJT log.

 

Fresh HJT log.

 

By the way, I removed oikocw [winsync] or similar with a previous HJT scan.

 

Please look in Add or Remove Programs for the following and Uninstall them if found:

Ewido

Spy Sweeper

Now scan with HijackThis and Check the Boxes for the following:

O23 - Service: ISSvc (ISSVC) - Unknown owner - C:\Program Files\Norton Internet Security\ISSVC.exe (file missing)
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Unknown owner - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe (file missing)

Make sure All Browser Windows are Closed when you Click FIX.

NEXT:
Run CCleaner to clean up cookies and temp files.

Run full scans with Ad-Aware SE & Spybot S&D and have both programs fix what they find.
Note: Remember to get all updates before doing the scans.

Then, as an added precaution, Go to Start > Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin

And Click OK.


After you complete the above, reboot and let me know how things are running.

 

All's good. iTunes will open, oikocw.exe is gone from startup, etc. Im gonna go for the night, Ill check back tommorow.

 

You should see this article on How to Protect yourself from malware!

Surf Safely!

 

Its back. Im running a full system scan in Adware S&E.

 

First, please run Panda Online Scan. After the scan attach the log to your next post. Also please follow the below:

1 - Please EXTRACT all files from Qoologic Tool to its own folder - C:\Program Files\QoologicFinder . Then, DoubleClick Find-Qoologic.bat to run the tool. It should produce a log - Please attach that with your next post!

2 - Please EXTRACT all the files form RKFiles Tool to its own folder named C:\Program Files\RKTOOL. Then, Please boot to SAFE MODE and DoubleClick rkfiles.bat to run the tool. Let it run and then, when it finishes, look for a log at C:\Log.txt and please attach that log.


Now come back here and post all three logs as attachments.