Still can't get rid of "search the web"

I have 2 new log files to post, one before fixing and one after. I have removed everything that was recommended and the thing is clean as a whistle (I think) except for this phony search bar and another bar at the bottom of the screen (surely related).
The "before scan" log file shows a file I delete everytime and it keeps retuning although I suspect with different letters. I ran in safe mode, turned off system restore and exposed all the hidden files. I ran Hijack this on both accounts and "administrator" (which only shows up in safe mode) and is not in use. There didn't seem to be anything there.
I will post before and after log files. If anyone thinks its helpful to see the other 2 accounts I can post them later.

 

Hi Kirsten,

Do you know what this is?

O4 - HKCU\..\Run: [Thunk Audio] C:\DOCUME~1\Kirsten\APPLIC~1\THIRDT~1\MORETRAY.exe

PP

 

I have no idea

 

Aha, nobody mentioned add/remove programs. I found the following suspicious programs there. Do I need this stuff??

Web tools by Hotbar
Search plugin
Weather tool
WOWpapers utility
Window search

Please advise. I feel like victory is within reach!!!

 

You'd know better than we would if those are things you need or use They sound like things you could safely dump.

You should also have HJT fix this entry:
O4 - HKCU\..\Run: [Thunk Audio] C:\DOCUME~1\Kirsten\APPLIC~1\THIRDT~1\MORETRAY.exe

and then you should Delete the related file (or even the folder, if you so choose):
C:\DOCUME~1\Kirsten\APPLIC~1\THIRDT~1\MORETRAY.exe

Let us know if you are able to solve the problem.

PP

 

Help, I was able to remove:
search plugin
windows search

I am not able to remove
WOWpapers(by Hotbar)
Weather tool (by Hotbar)
Web tools by Hotbar

Nothing happened when I clicked on change/remove, I got a message about others logged onto the computer and I clicked continue. Then nothing happened.

I am not going to work on those other 2 files. Will check back after that.

 

I ran hijackThis 1 more time. The file I was to remove was gone(!). I again removed the obnoxious R1 listing with all the random letters and numbers. What is the proxy override for, the other R1 entry?
I am posting the latest 2 logfiles for both my accounts

 

Hi Kirsten,

I'm not too familiar with Hotbar. I know they provide an uninstaller (if you want to risk it ) It sounds like something you might have to search for and manually remove.

Here are a couple links for more info:
Hotbar Removal Instructions and Help

http://www.doxdesk.com/parasite/HotBar.html

PP

 

Re: Got rid of "search the web"!!!

Hey Phillie Phan
I removed all those hotbar files except one that was missing. The main hotbar tool was removed by one on the cleaning programs I ran. I am still unable to remove the Weather tool, web tool and WOWpapers utility. I thought I would try turning off hide protected operating system files and try again. Any hints here?
But search the web is gone!!!!! You guys are the greatest!!!

But now when my husband opens his homepage, it says underneath "done but with errors". I can't see any errrors so what that all about?

 

Re: Got rid of "search the web"!!!

Hi Kirsten,

Sorry I didn't get back to you sooner!
I do not know what to do about the "done but with errors" message. I imagine it could be there for a number of reasons.

Regarding Weather tool, WOWpapers, etc. . . Try looking for them in the Program Files folder and deleting all traces.

If you can't find them there, try running a search of your computer with Windows Explorer for any related files and clean them that way.

Best luck,
PP

 

Hey PP
I followed your directions regarding Hotbar, WOW and Weather tool. I found and deleted about 125 files related to hotbar. Some of them will not go away. I still cannot remove these programs from Add/remove programs. But they are not running eiather. Don't know where they are. Will try to reboot and see if it helps.

Kirsten

 

Hi Kirsten,

Sorry I'm not much help here. If you are having trouble removing stubborn files, you could try deleting them with this tool:

Pocket KillBox

Be careful - Despite its size, it is quite powerful!

Best luck

PP