>>>>>>Spyware<<<<<<<

Discussion in 'Malware Help (A Specialist Will Reply)' started by night_flight, Mar 4, 2005.

  1. night_flight

    night_flight Private E-2

    HI all,
    I am having some real troubles with my computer lately..I am not sure if it is spyware or Internet explorer crashings but here is the problem
    when I go to google or some other search engines and type a word and search it I get this error
    http://www.geocities.com/night_flight82/Image2.jpg and notice also how my google site in the top left corner DOES not have Google - Internet Explorer but just "Google -"
    here is the data report:


    <?xml version="1.0" encoding="UTF-16"?>

    Edit by chaslang: Inline XML code and HJT log deleted.

    Now I HAVE FOLLOWED ALL THE STEPS ON THIS FORUM IN REMOVING SPYWARE:
    I have updated norton virus 2005
    I have updated spybot, microsoft anitspyware beta version, spware blaster, adaware spy check and still get no where :rolleyes:
    and also I updated on windows update site

    here is my hi jack:

    Edit by chaslang: Inline XML code and HJT log deleted. Please follow forum guidelines.

    can anyone tell me is this a virus? spyware? tech error

    and how do I get help on this :(
    thank u all
    night_flight
     
    Last edited by a moderator: Mar 4, 2005
    night_flight, Mar 4, 2005
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Please do not post inline XML code? And please follow guidelines on post HJT logs.

    Is there a reason you did not run the Symantec online scan as required?

    If you have run ALL steps of the READ ME FIRST, follow the below steps:

    - Download     HijackThis 1.99.1

    - Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

    - Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file.

    - Before running HijackThis: You must close each of the following: your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

    - Run HijackThis and save your log file.

    - Post your log as an ATTACHMENT to your next message.(Do NOT copy/paste the log into your post).
     
    chaslang, Mar 4, 2005
    #2
  3. night_flight

    night_flight Private E-2

    night_flight, Mar 4, 2005
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You post your log here as an attachment to your message not as a link to somewhere else.

    Your first big problem is this: Messenger Plus! 3

    You must uninstall this program. It puts all kins of crap on your PC including LOP. If you don't know about LOP, read the below:
    http://www.spywareinfo.com/articles/lop/
    http://www.doxdesk.com/parasite/lop.html

    Also the below programs have been on a list of rogue/suspect spyware removal tools for quite awhile and are probably doing you more harm then good. You should uninstall them and cleanup any lines in you HJT left over from them after uninstalling. And then delete their folders from your hard disk too.
    O4 - HKCU\..\Run: [SpyKiller] C:\Program Files\SpyKiller\spykiller.exe /startup
    O4 - HKCU\..\Run: [BestPopUpKiller] C:\Program Files\BestPopUpKiller\BestPopupKiller.exe /startup


    After doing the above reboot and then post a new HJT log and tell me how things are working.
     
    chaslang, Mar 4, 2005
    #4
  5. night_flight

    night_flight Private E-2

    HI,
    uninstalling msn plus got me no where...and I also uninstalled and deleted those 2 things as u will see from my log...I dont think msn plus was creating problems as I had it for a year and nothing happened only in the last week or so its been givin me the shits :eek:
     

    Attached Files:

    night_flight, Mar 8, 2005
    #5
  6. TheOldThug

    TheOldThug First Sergeant

    Hey Chas, looks like you haven't started a fix for him yet so I will get him started. Please feel free to take over.

    Please print out these instructions so that you can operate with ALL Browser Windows CLOSED.
    Please make sure System Restore is OFF and the Viewing of Hidden Files is Enabled as per the tutorial.

    Now physically disconnect yourself from the internet by unplugging your cable or connection from the wall. Do not reconnect until instructed.

    NOW:
    Please look in Task Manager (ctrl-alt-del)and try to END the following running processes, if found:

    ptask.exe

    Now scan with HijackThis and Check the Boxes for the following:

    O4 - HKLM\..\Run: [Parallel Tasking] C:\Program Files\Parallel Tasking\ptask.exe

    Again, make sure All Browser Windows are Closed when you Click FIX.

    NOW:
    Please boot into Safe Mode with the Viewing of Hidden Files Enabled and navigate to and DELETE the following folder if it should remain:

    C:\Program Files\Parallel Tasking---The Folder

    If you get an error when deleting a file. Right click on the file and check to see if the read only attribute is checked. If it is, uncheck it and try again.

    NEXT:
    Run CCleaner and Spybot S&D and have Spybot fix what it finds.

    Now reconnect to the internet with cable or plug into the wall connection.

    Reboot to Normal Windows and Scan with HijackThis and attach that log.
    Let me know how your computer is running now and if you had trouble with the above instructions.

    Good luck :)
     
    TheOldThug, Mar 8, 2005
    #6
  7. night_flight

    night_flight Private E-2

    sorry what is cc cleaner and where do u find one? and also how to make system restore off?
    thankx
     
    night_flight, Mar 8, 2005
    #7
  8. TheOldThug

    TheOldThug First Sergeant

    CCleaner and turning off system restore are explained in:
    First, please follow ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal.
    If you already have any of the programs linked in the tutorial please double check your version to make sure you have the latest one and that you have any/all updates for the programs.


    Remember when you said this?
    Please go here for CCleaner

    To turn off system restore.
    1: Right click on the My Computer icon on your desktop and select properties.
    2: Click on the system restore tab.
    3: Check the box that says "Turn off system restore on all drives". Click OK.
    4: Click Yes when you are prompted to restart the computer
    5: To re-enable System Restore, follow steps 1-3, but in step 3, click to clear the Disable system Restore check box.

    Please feel free to let us know if you don't understand something and let us know when you could not follow the steps we recommend.
     
    TheOldThug, Mar 8, 2005
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds