Spyware Problems

Hello All. I've got a lovely little problem on my hands. I 've got an annoying Search Bar on my Browser and also got the virus/bug that highlights certain words on websites. I have run Hijack This and Spybot Search and Destroy. Both have found problems but I will not post Hijack This untill asked.


Please help. Thanks very much.


Hartsville.

 

Hi Hartsville,

Sounds like you might have Ezula and one of the PITA toolbars that are floating around. Do you know which toobar it is? Ex. EliteBar, MySearch Bar, etc...

Generally, it is a good idea to start with the Cleanup Tutorial HERE:

READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan and Virus Removal

There are only a few of us Volunteers who regularly offer advice in this forum. Running through the above Tutorial will remove a lot of stuff that would otherwise clog a HijackThis Log and save us valuable time.

Please let us know the steps that you are able to complete and the ones that give you problems. Note that you need to be in Safe Mode with System Restore OFF (if you have it - you didn't give OS) and have the Viewing of Hidden Files ENABLED as per the instructions in the link. Make sure to do the Online Scans.

Post back and let us know how you fared. Also, send us a HijackThis Log. Please be sure to follow the instructions below:

Note that your HijackThis should be up-to-date (v1.99) and MUST be extracted to its own safe folder – C:\Program Files\HijackThis!
Should you need a Fresh Download of HJT, get it HERE: HijackThis v1.99

Also note that, before you scan, you MUST close all running programs including your web browser, e-mail and items in the system tray.

Please save your HJT Log as a .txt File and attach it via the "Manage Attachments" tool in the Additional Options section when you post.

I’m not around this forum too often these days, but somebody will try to take a look when they get a chance.

Best luck
PP

 

PhilliePhan,

I believe that I have the Begin2Search Toolbar. I am running Windows 2000. I have read through the tutorial and am about to start the cleanup process. I need to desperately b/c my computer is running slower than ever. These virus must be taking up a LOT of memory. Thanks.


Will let you know what happens.

Hartsville

 

I've run through all the processes in the previous post and to no avail. Here is the run down on what happended throughout the clean-up process.

The Trend Micro' Free Scan found this:
C:/Winnt/System32/nethv32.dll


Adware Found 26 problems and "fixed" what was found.

Spybot found 1 problem and "fixed" what was found.

I ran all the other cleaners as instructed in Safe Mode, CC Cleaner, CWShredder and Kill2Me.

I am posting my HiJackThis Log as instructed.

Thank all of you kind and generious people on this website.

 

Chaslang,

You helped me with a previous issue with my computer and I found you to be unbelievably helpful(my old sign-in name was Computer Elliterat, I've lost my password info so I changed names). If you have a minute please see if their is anything you could suggest to help me out of this quandry.

I have not nor will I shut my computer off untill I am instructed to do so.


Thank you.


Hartsville, South Carolina

 

God Almighty is it good to see you Mr. Chaslang. In the world of Spyware and viruses I must say that you Sir are a bad man. I ran through the processes that you outlined in your post. I skipped a couple of steps b/c they simply were not there.

I could not find:

O4-HKLM\..Run:[Windows Srve Ad]C:\ProgramFiles\Windows ServeAd\WinServAd.exe

or


C:\WINNT\system32\winb2s32.dll
C:\Program Files\Windows ServeAd


My Computer is "running" a heck of a lot faster now and does not have the search toolbar attatched to it any longer. However, I still can not seem to access my e-mail address. This may happen to be my service providers fault(Adelphia, they have very bad service and it black outs happen quite frequently).

Please find attatched my latest and greatest HiJack This Log Attatched.

I know that many persons have offered to buy you a beer or the like but please let me know what I can do to somehow begin to repay the debt I have accrued with you and this website. I work out of the home and you have saved me a considerablramount of money in helping me get over me virus/spyware issues. God bless you and Thank you so much.

Sincerely,

Wade P. O'Kelley
Hartsville, South Carolina

 

Chaslang,

I ran HJThis and fixed O2 - BHO: ohb - {CB5B2BC6-F957-4D8A-BE67-83F3EC58BA01} - C:\WINNT\system32\dsktrf.dll (file missing)


Everything seems normal, except I still can not get into my e-mail and it seems that my CD-Rom is screwed up. When I insert a CD it can not read it.

I have a web-based e-mail provider. I log onto the site
www.adelphiapowerpage.com, enter my e-mail address and password and normally go on from there. It appears to be dependent upon my computer b/c I was able to access my e-mail from another persons computer.

Please let me know if I need to pose these questions/probelms in a different forum.

Thank you for all your help.

 

Chaslang,

Here is waht I wrote in the previous post. I am not trying to be a smart aleck but this is the extent of my computer savy.

I log onto the site
www.adelphiapowerpage.com, enter my e-mail address and password and normally go on from there. It appears to be dependent upon my computer b/c I was able to access my e-mail from another persons computer

I beleive that technicians from Adelphia may have installed something on my computer to allow it to work. I am planning on calling them on Monday for help.

Any ideas????????????

Thanks

 

10-4 Will be trying to get in touch with my ISP. Thanks.