I have ad aware 6 and love it but...

I keep getting a pop-up on my work computer called http://allaboutsearching.com/passthrough/popbaropener.html.
I can't get rid of it and it sits at the bottom of my homepage with words like sex, casino, travel, etc. I know there's some simple way to remove this. Can someone please tell me what it is. Thanks. cb

 

Have you tried running HijackThis? Post us your log file, and we can help you remove it.

 

Goldfish-Thank you...

I have not done anything with these. It is probably obvious that I work for the forest service. Yes, there is probably alot of garbage here but I don't want to remove anything that might affect the rest of the system. Mainly my own problems. We are R6 (Region 6-Pacific NW) so not sure what that means. I hope I'm not disseminating secret info...I have trusted majorgeeks so far so hope this is cool. Tell me what I can do and thanks for responding!!

Logfile of HijackThis v1.97.7
Scan saved at 10:39:29 AM, on 3/3/2004
Platform: Windows 2000 SP3 (WinNT 5.00.2195)
MSIE: Internet Explorer v5.00 SP1 (5.00.2920.0000)
Running processes:
C:\WINNT\System32\MsgSys.EXE
C:\WINNT\Explorer.EXE
C:\WINNT\System32\PELMICED.EXE
C:\WINNT\System32\Promon.exe
C:\Program Files\Norton AntiVirus\vptray.exe
C:\Tivoli\lcf\bin\w32-ix86\mrt\lcfep.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\COMETS~1\DM\bin\dmserver.exe
C:\Program Files\Common files\updater\wupdater.exe
C:\PROGRA~1\up bore\popprogramplus.exe
C:\Program Files\Common Files\slmss\slmss.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Common Files\Real\Update_OB\rnathchk.exe
C:\PROGRA~1\WinZip\winzip32.exe
C:\DOCUME~1\cbaker\LOCALS~1\Temp\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://allaboutsearching.com/searchbar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://allaboutsearching.com/searchbar.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://allaboutsearching.com/passthrough/index.html?http://mail.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://allaboutsearching.com/searchbar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://allaboutsearching.com/searchbar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://allaboutsearching.com/searchbar.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://allaboutsearching.com/searchbar.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 166.2.192.10:80
R3 - URLSearchHook: IncrediFindBHO Class - {5D60FF48-95BE-4956-B4C6-6BB168A70310} - C:\PROGRA~1\INCRED~1\BHO\INCFIN~1.DLL (file missing)
O1 - Hosts: 166.2.192.10 jcsv1.jc.wo.fs.fed.us jcsv1
O1 - Hosts: 166.2.192.11 jcsv2.jc.wo.fs.fed.us jcsv2
O1 - Hosts: 166.2.192.12 jcsv3.jc.wo.fs.fed.us jcsv3
O1 - Hosts: 166.2.192.13 jcsv4.jc.wo.fs.fed.us jcsv4
O1 - Hosts: 166.7.3.70 admin01.fs.fed.us admin01
O1 - Hosts: 166.7.3.87 ent01r1.fs.fed.us ent01r1
O1 - Hosts: 166.7.3.110 entr1a.fs.fed.us entr1a
O1 - Hosts: 166.7.3.111 entr1b.fs.fed.us entr1b
O1 - Hosts: 166.7.3.112 entr1c.fs.fed.us entr1c
O1 - Hosts: 166.7.3.113 entr1d.fs.fed.us entr1d
O1 - Hosts: 166.2.214.18 entr2a.fs.fed.us entr2a
O1 - Hosts: 166.2.214.19 entr2b.fs.fed.us entr2b
O1 - Hosts: 166.3.68.15 entr3a.fs.fed.us entr3a
O1 - Hosts: 166.3.68.16 entr3b.fs.fed.us entr3b
O1 - Hosts: 166.2.100.25 entr4a.fs.fed.us entr4a
O1 - Hosts: 166.2.100.26 entr4b.fs.fed.us entr4b
O1 - Hosts: 166.5.4.15 entr5a.fs.fed.us entr5a
O1 - Hosts: 166.5.4.16 entr5b.fs.fed.us entr5b
O1 - Hosts: 166.5.4.21 entr5c.fs.fed.us entr5c
O1 - Hosts: 166.5.4.22 entr5d.fs.fed.us entr5d
O1 - Hosts: 166.6.4.134 entr6a.fs.fed.us entr6a
O1 - Hosts: 166.6.4.135 entr6b.fs.fed.us entr6b
O1 - Hosts: 166.6.4.112 entr6c.fs.fed.us entr6c
O1 - Hosts: 166.6.4.113 entr6d.fs.fed.us entr6d
O1 - Hosts: 166.4.1.30 entr8a.fs.fed.us entr8a
O1 - Hosts: 166.4.1.31 entr8b.fs.fed.us entr8b
O1 - Hosts: 199.131.201.13 entr9a.fs.fed.us entr9a
O1 - Hosts: 199.131.201.14 entr9b.fs.fed.us entr9b
O1 - Hosts: 199.131.100.28 entr10a.fs.fed.us entr10a
O1 - Hosts: 199.131.100.126 entr10b.fs.fed.us entr10b
O1 - Hosts: 199.131.12.77 entwoa.fs.fed.us entwoa
O1 - Hosts: 199.131.12.76 entwob.fs.fed.us entwob
O1 - Hosts: 166.7.3.75 r1data01.fs.fed.us r1data01
O1 - Hosts: 166.2.214.31 r2data01.fs.fed.us r2data01
O1 - Hosts: 166.3.68.18 r3data01.fs.fed.us r3data01
O1 - Hosts: 166.2.100.3 r4data01.fs.fed.us r4data01
O1 - Hosts: 166.5.5.2 r5data01.fs.fed.us r5data01
O1 - Hosts: 166.6.4.76 r6data01.fs.fed.us r6data01
O1 - Hosts: 166.4.1.25 r8data01.fs.fed.us r8data01
O1 - Hosts: 199.131.201.8 r9data01.fs.fed.us r9data01
O1 - Hosts: 199.131.100.138 r10data01.fs.fed.us r10data01
O1 - Hosts: 166.2.176.22 rmrsdata01.fs.fed.us rmrsdata01
O1 - Hosts: 166.4.171.74 srsdata01.fs.fed.us srsdata01
O1 - Hosts: 199.131.12.70 wodata01.fs.fed.us wodata01
O1 - Hosts: 199.131.112.34 ncdata01.fs.fed.us ncdata01
O1 - Hosts: 199.131.126.92 nedata01.fs.fed.us nedata01
O1 - Hosts: 166.6.4.78 pnwdata01.fs.fed.us pnwdata01
O1 - Hosts: 170.144.1.1 pswdata01.fs.fed.us pswdata01
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] PELMICED.EXE
O4 - HKLM\..\Run: [Promon.exe] Promon.exe
O4 - HKLM\..\Run: [dllInit ibmasstw.dll] "C:\Program Files\IBM\UMS\utils\DLLINIT.EXE" ibmasstw.dll
O4 - HKLM\..\Run: [helptoc.bat] "C:\Program Files\IBM\UMS\httpserv\winspawn.exe" C:\PROGRA~1\IBM\UMS\httpserv\help\helptoc.bat
O4 - HKLM\..\Run: [Oracle Reports Cleanup] C:\fsapps\fssys\oracle\oraclean.lnk
O4 - HKLM\..\Run: [vptray] C:\Program Files\Norton AntiVirus\vptray.exe
O4 - HKLM\..\Run: [lcfep] "C:\Tivoli\lcf\bin\w32-ix86\mrt\lcfep.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DM_Server] C:\PROGRA~1\COMETS~1\DM\bin\dmserver.exe /onreboot
O4 - HKLM\..\Run: [stcloader] C:\WINNT\System32\stcloader.exe
O4 - HKLM\..\Run: [updater] C:\Program Files\Common files\updater\wupdater.exe
O4 - HKLM\..\Run: [TB_setup] C:\DOCUME~1\cbaker\LOCALS~1\Temp\tb_setup.exe /dcheck
O4 - HKLM\..\Run: [Stupid Wma] C:\PROGRA~1\up bore\popprogramplus.exe
O4 - HKLM\..\Run: [winactive] C:\Program Files\Window Active\winactive.exe
O4 - HKCU\..\Run: [slmss] C:\Program Files\Common Files\slmss\slmss.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward &Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Si&milar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: Real.com (HKLM)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office.microsoft.com/templates/ieawsdc.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://www.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://imgfarm.com/images/nocache/funwebproducts/SmileyCentralInitialSetup1.0.0.6.cab
O16 - DPF: {26E8361F-BCE7-4F75-A347-98C88B418322} - http://dst.trafficsyndicate.com/Dnl/T_76/QDow.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/20030530/qtinstall.info.apple.com/bonnie/us/win/QuickTimeInstaller.exe
O16 - DPF: {41F31718-2B9D-4F76-85E2-DD11BBA99F8D} - http://install.spywarelabs.com/DistID/2501031120/BundleOuter2501031120.EXE
O16 - DPF: {6EB5B540-1E74-4D91-A7F0-5B758D333702} - http://bis.180solutions.com/activexinstallers/Installer/nCaseInstaller.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?37900.3212268519
O16 - DPF: {A16E6189-A1DD-4696-9806-0324C145D794} (KeyActivex Control) - http://www.jraun.com/activex/src/KeyActivex.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DDFFA75A-E81D-4454-89FC-B9FD0631E726} - http://www.zestyfind.com/app/AX/AX.cab
O16 - DPF: {DF6A0F17-0B1E-11D4-829D-00C04F6843FE} (Microsoft Office Tools on the Web Control) - http://officeupdate.microsoft.com/TemplateGallery/downloads/outc.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0E306533-DA35-4876-B58C-250464A07B04}: Domain = jc.wo.fs.fed.us
O17 - HKLM\System\CCS\Services\Tcpip\..\{0E306533-DA35-4876-B58C-250464A07B04}: NameServer = 10.1.140.203
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = jc.wo.fs.fed.us,wo.fs.fed.us,fs.fed.us
O17 - HKLM\System\CS1\Services\Tcpip\..\{0E306533-DA35-4876-B58C-250464A07B04}: Domain = jc.wo.fs.fed.us
O17 - HKLM\System\CS1\Services\Tcpip\..\{0E306533-DA35-4876-B58C-250464A07B04}: NameServer = 10.1.140.203
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = jc.wo.fs.fed.us,wo.fs.fed.us,fs.fed.us
O17 - HKLM\System\CS2\Services\Tcpip\..\{0E306533-DA35-4876-B58C-250464A07B04}: Domain = jc.wo.fs.fed.us
O17 - HKLM\System\CS2\Services\Tcpip\..\{0E306533-DA35-4876-B58C-250464A07B04}: NameServer = 10.1.140.203
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = jc.wo.fs.fed.us,wo.fs.fed.us,fs.fed.us

 

you have a few things there i can see straightaway
so first of make sure your ad-aware is updated with the latest definitions
then download
spybot
make sure you update it before you run it then delete everything it finds
also download
CW Shredder
make sure you update this also then run scan and fix anything found
i would also reccomend an online scan here
Housecall
fix anything found
then please re-run hijack this and post a fresh log so we can check it over

 

ok...i've done that but found more stuff...

Isn't this freeware etc. loading other stuff I may not want?? It's definitely alot cleaner than it was but I found other stuff after 2nd ad-aware scan!! Thank you.



C2.lop: Tracking cookie (Internet Explorer: cbaker) (Cookie, fixed)Alexa Related: What's related link (Replace file, fixing failed)
C:\WINNT\Web\RELATED.HTM
Comet Cursors: Program settings (Registry key, fixing failed) HKEY_LOCAL_MACHINE\Software\Comet Systems


KeenValue.eUniverse.MyFreeCursors: Autorun settings (Registry value, fixing failed) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\updater

 

damn comet cursor crap.. I hate that damn thing.

Any way, are you using the latest ad-aware def's?

if yes, then maybe trying spybot might clear you up.

 

thanks kodo...

Yeah...I updated just moments before. I'm afraid it's one of my favorite sites that's doing it. Neopets.com and superdudes.net. Maybe it's something I have to live with if I want to keep playing on those sites. I used spybot too. Wow, seems like a great site here. Majorgeeks has opened my eyes about some things! cb

 

Hi Cindy you shouldnt have to put up with these things (btw my daughter is always on neo-pets runs a guild or something)
Anyway the Alexa and Comet Cursors rubbish should be fixed with the latest Spybot search and destroy
the keen value is your real downer this involves pop-up ads heres a link ffor info or manual removal, half way down the page is a link for a removal tool cut and paste it into your browser to download
http://www.pestpatrol.com/pestinfo/e/euniverse.asp

Yes im afraid most of these are attached to the cute little freeware programs advertised on a lot of sites generally there should be something in the EULA(licence agreement that you have to click yes to install) stating that these will be installed but who bothers reading them
Be advised that by removing the spyware a lot of these programs will no longer work

 

Thanks stoned!

My thanks to all in the smoke filled room with you!

 

I have same problem with http://allaboutsearching.com/passth...pbaropener.html

I have the same problem guys, and have run HijackThis with the following log as result. Hope you can help, as our own IT guy has failed and sent me to you. Your taxpayer dollars at work! Any help appreciated:

Logfile of HijackThis v1.97.7
Scan saved at 2:45:34 PM, on 3/5/2004
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v5.51 SP2 (5.51.4807.2300)
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\Ati2evxx.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\hidserv.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\Network Associates\VirusScan\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
C:\WINNT\System32\mnmsrvc.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\System32\mspmspsv.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\WINNT\system32\Atiptaxx.exe
C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\PROGRA~1\eCopy\Desktop\PCLprint\mrmlnc32.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe
C:\Program Files\PrintKey2000\Printkey2000.exe
C:\Program Files\axis film\bags logo.exe
C:\Program Files\Quick View Plus\PROGRAM\QVP32.EXE
C:\PROGRA~1\MICROS~2\Office\OUTLOOK.EXE
C:\Program Files\Common Files\System\MAPI\1033\nt\MAPISP32.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\WinZip\winzip32.exe
C:\DOCUME~1\fadelman\LOCALS~1\Temp\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://allaboutsearching.com/searchbar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://allaboutsearching.com/searchbar.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://allaboutsearching.com/passthrough/index.html?http://www.google.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://allaboutsearching.com/searchbar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://allaboutsearching.com/searchbar.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://allaboutsearching.com/searchbar.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O1 - Hosts: 158.72.96.62 pc096062 pc096062 # LSP SYSTEM2
O1 - Hosts: 158.72.96.193 pc096193 pc096193 # LSP SYSTEM2
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: 2020SEARCH2 - {4E7BD74F-2B8D-469E-92C6-CE7EB590A94D} - C:\WINNT\2020Search2.dll (file missing)
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [QuickFinder Scheduler] "C:\Program Files\Corel\WordPerfect Office 2002\Programs\QFSCHD100.EXE"
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [AtiPTA] Atiptaxx.exe
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe"
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [eCopy Desktop Printer Service] C:\PROGRA~1\eCopy\Desktop\PCLprint\mrmlnc32.exe
O4 - HKLM\..\Run: [PileDumb] C:\PROGRA~1\axis film\bags logo.exe
O4 - HKLM\..\Run: [Ad-aware] "C:\Program Files\Lavasoft\Ad-aware 6\Ad-aware.exe" +c
O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"
O4 - HKCU\..\Run: [LDM] \Program\BackWeb-8876480.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Printkey2000.lnk = C:\Program Files\PrintKey2000\Printkey2000.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://active.macromedia.com/director/cabs/sw.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = HHSOIG.GOV
O17 - HKLM\System\CCS\Services\Tcpip\..\{2B27386E-77B1-4BDB-AEED-EA8E9A1106E9}: NameServer = 158.70.112.235,158.70.112.234
O17 - HKLM\System\CCS\Services\Tcpip\..\{590D38A0-B321-4519-8DED-971E4B347FE9}: NameServer = 158.70.112.235,158.70.112.234
O17 - HKLM\System\CCS\Services\Tcpip\..\{F481F9FF-5BDC-4913-A0D2-5BF0A3CA7EA3}: NameServer = 158.70.112.235,158.70.112.234
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = HHSOIG.GOV
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = HHSOIG.GOV

 

Well said chaslang also Lucid after doing all of the above please start a new thread in software with your new log explaining what action you have taken thus far

 

fix for allaboutsearching junk

I think I have found a solution for the allaboutsearching nightmare!!!!!!!! I also had the nasty toolbar that would not go away. Finally I clicked on the search button and a page opened. I looked around and found a help link. Followed the link and found a uninstall program. Here is the link: http://lop.com/new_uninstall.exe

Run this program and reboot. I did and the toolbar is GONE!!!!!!!! No hijackthis logs or scans required. If it works for you let me know!!!

 

"Allabout searching" problem

I just tried the link http://lop.com/new_uninstall.exe to get rid of the "allaboutsearching" nightmare, and so far, it seems to be working great! I tried a number of more complicated alternatives before finding this one, and none of them worked worth a darn. Thanks for sharing.