Plagued by numerous Spyware problems

Hi -
I'm looking for help correcting some problems in my system that seem to result from pesky Spyware. I've had a number of programs install themselves, ranging from Cool Web Search to Comet to DyFuca. I've run a number of cleanings to rid my sytem of them, but now I have frequent freezes and crashes with Internet browsers. When online, something is definitely hogging system resources.

I've followed all the prescribed procedures leading up to a Hijack This log (attached) with the exception of the Panda Active scan, which I could not complete due to above-mentioned crashes (11 attempts in all). Also attached are the CounterSpy and BitDefender logs.

I'm running Windows 98 SE on a Dell Dimension XPS T500 and am running Norton System Works 2K.

My hearty appreciation for any assistance anyone can offer. Thanks!

 

Please follow the steps below:

- Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

• Make sure you check version numbers and get all updates.

After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis:

Downloading, Installing, and Running HijackThis

Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around.

When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:

• runkeys.txt - the log from GetRunKey.bat
• newfiles.txt - the log from ShowNew.bat
• CounterSpy - ONLY IF you were not able to run Windows Defender
• Bitdefender - from step 6
• Panda Scan - from step 6
• HijackThis

 

My apologies. I was accustomed to the old set of instructions I'd printed out last year! Thanks for setting me straight. All files now attached, though I still find myself unable to run the Panda Active scan. I can't even go in through the home page without experiencing a crash.

Here are the first three:

 

Here are the last two logs.

The results of my scans found and supposedly fixed the following:
A Norton scan discovered 9 instances of the W32.Netsky.P virus.

AdAware found traces of DyFuCa, Download Plus, CoolWebSearch (I'd already run CWS Blaster), Comet Systems, and Alexa.

Spybot found eveidence of Alexa-related spyware and All-in-One Telecom spyware.

CounterSpy found evidence of a Avenue Media.DyFuCa browser plug-in, and ABetterInternet.Aurora.

Other findings will be apparent from the logs.

Despite having each program quarantine, delete, and fix these problems, my Internet browser crashes and freezes persist.

A hearty thanks!

 

Download
- Pocket Killbox

<< The installed version of Java on this compter is out-dated. Install Java Runtime Environment (JRE) 5.0 Update 8 available from http://java.sun.com/javase/downloads/index.jsp. Uninstall all older versions of Java on your computer, before installing the latest version of Java. >>

Empty the MSN6 Trash
You have 1 infected email in Outlook Express. Check your BitDefender log for which eamil. The subject line is not repeatable in a public forum.

Copy the contents of the below quote box to Notepad; Save As FixReg.reg to your Desktop. DO NOT run it as this time we will do that later in Safe Mode.

Close Notepad.

Now run Pocket Killbox:

Choose Tools -> Delete Temp Files and click Delete Selected Temp Files

Then after it deletes the files click the Exit (Save Settings) button.

NOTE: Pocket Killbox will only list the added files it is able to find on the system. So when you do the below, if some files do not show in the list after pasting them in, just continue..

Select:

• Delete on Reboot
• then Click on the All Files button.
• Please copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy):
• Return to Killbox, go to the File menu, and choose Paste from Clipboard.
• Click the red-and-white Delete File button. Click Yes at the Delete on Reboot prompt. Click OK at any PendingFileRenameOperations prompt (and please let me know if you receive this message!).

If Killbox does not reboot or you get a Pending Operations type error message just reboot your PC yourself.

Now boot into SAFE MODE

Locate FixReg.reg on your Desktop. Double-click on it and answer 'Yes' when asked if you want to merge with the registry.

Open ExplorerXP navigate to and DELETE the following: (Some of these may have already been deleted by Pocket Killbox)

Now run CCleaner. If you have Windows XP delete the contents of C:\WINDOWS\Prefetch.

Then, as an added precaution, Go to Start -> Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin

And Click OK.

REBOOT to Normal Mode.

Other than the above your logs give no other indication of Malware.

 

Thanks - I'll give it a try and repost