can i suggest one thing, did you also check in add/remove programs? i mean after all it may not be spyware (even though it looks suspiciously so doesn't it?) and there may be an uninstall program for it. any program that doesn't install itself legitemately is crapware to me, but perhaps this one is so new that spyware and ad-aware aren't capaple of removing it yet are they? finally, after being in the UK for three days, will one of you brits explain o me what is this obsession you have with asking questions at the end of sentences?
I didn't get rid of UpdReg, I renamed it then restarted. A box popped up saying it couldn't find the update server, I clicked ok then started IE, It's still here!
Shall I stick a long thin piece of tape across the screen?;D
You guys are brilliant, your resonding faster than I can answer.
This may be about to get Embarrassing. Daughter is on PC2 so I turn around and ask her if this blue bar is on her PC, It is. During the last week I have had a load of trouble with NTL (see my thread NT Hell) Part of trying to fix my one way internet problem I copied all the advanced settings from internet options in PC2, which was working fine, to this one. Before I go on please put those clubs down guys, Ah, thats better.
Right so then I got IE sorted out but another part of NTLs fix was to dissconect the router and turn Zone Alarm off (no protection) These were off for 10 minites max while I registered with NTL. During this 10 mins I was infected with Blast and Welcha worms!! I cleaned them and the internet worked ok after that apart from this blue toolbar. I then started this thread and the rest as they say is history.
Now, I did, Honestly, As Prime suggested reset IE options, I did, I really did, Honest, It's true, I really really did, Honest. Well I've just reset them again and, How can I put it? erm, the blue bars gone. I have deleted a few things the programms you guys gave me and restarted a few times so I don't know. I clicked reset defaults and it went away and hasn't come back. Maybe it isn't spyware afterall? I've got some nice little progs and learned a load of stuff again, As I frequently do when I mix with you guys, Thanks very much all of you, What a site, What a bunch of guys, Cheers.
Well I am thankful that bothered had this trouble.
I have had one for a couple of weeks that I have been trying to get rid of and you guys gave me the ticket.
tks
0
KwitkoSheriff of Banning (Retired)By the thing near the stuffIcrontian
edited September 2003
I bet the blue bar was some sort stubborn ActiveX control. Just for spit and giggles, check the C:\%SYSTEMROOT%\Downloaded Program Files folder for anything suspicious. All of it probably looks suspicious, but if you right click and choose Properties, you should be able to figure out what the ActiveX control is. It's worth a shot, just to make sure that puppy is finally exorcised.
I Just connected to check any overnight posts and it's back, I reset defaults again but it didn't remove it If I click view and un check it, it goes away and this time it stays away. I'll see if any of the spyware I removed has come back later. I would like to be rid of it but I can live with clicking it once, Don't want to drive everyone barmy with this thing.
So I have been using the tips here to clean up my travel machine. Yesterday at work a virus locked up the network. Our firewall limited the damage, but it was coming from a machine inside. Of course they checked mine first (don't know why, I travel with it a lot, just back from China).
And it wasn't me. I may still be fighting adware, but no virus here.
GOT IT!
It was gone yesterday but back this morning. I did a few things today and it was still there, I decided to click on a few of the buttons on it to see if I could get a name. It's a friggin search engine called 'search web now' I've no idea how it got in here!
I ended up with a help page, One question caught my eye, 'how do I uninstall any of your products?' There is a small file to download and run and PRESTO, It's gone. It's even gone from the view toolbars. I had avoided clicking on it before because I didn't know what it was and everybody here seemed to think it was something undesirable (and anything in here which I didn't put here is)
Thanks again all, Hopefully that is the end of it and I won't get another bullwhipping from Prime. Man he's mean with that thing.
LOL, it's one of those 'did you read the manual' moments!!
I think we were all so caught up about it being spyware blah blah that nobody though of checking to see if there was any kind of 'help' with the product.
At least the people from 'Search Web Now' were kind enough to give you the option of uninstalling their product.
Well done bothered for finally managing to get rid of the damn thing, and thanks to everyone else for keeping me amused (at bothered's expense I'm sorry to say) with this very interesting thread.
Yup, Prof gave it me. But as everybody thought it was spyware and we didn't have a name for it wel, We didn't know what we were looking for.
It's yet another lesson in don't overlook the obvious. Ain't hindsight a wonderful thing?
I just fought with this irritating toolbar for 3 hours today on a client's computer without success. Thanks for going thru the drill, it was driving me nuts!
Comments
Add remove is too big and I don't see anything in there that shouldn't be.
Do you have Office 2K3 beta installed? That ctfmon.exe looks familiar.
Shall I stick a long thin piece of tape across the screen?;D
You guys are brilliant, your resonding faster than I can answer.
bothered.
PS, I'll rename updreg later.
Goto C:\Program Files\Internet Explorer\Plugins
Right click on each file, open Properties. List the plugins...
bothered.
Well, we can probably rule out the filthy rich part, eh?
I didn't know you knew me but you're spot on
bothered.
arrggghhhh.
Try exporting some of the other suspect registry keys (in case you need them again), then delete the fishy looking ones.
Oh yeah, be of good cheer...
Tex
Send more info on the ones marked in red.
I'm riding with prime's Spyware Posse, now - this is starting to get personal!
Right so then I got IE sorted out but another part of NTLs fix was to dissconect the router and turn Zone Alarm off (no protection) These were off for 10 minites max while I registered with NTL. During this 10 mins I was infected with Blast and Welcha worms!! I cleaned them and the internet worked ok after that apart from this blue toolbar. I then started this thread and the rest as they say is history.
Now, I did, Honestly, As Prime suggested reset IE options, I did, I really did, Honest, It's true, I really really did, Honest. Well I've just reset them again and, How can I put it? erm, the blue bars gone. I have deleted a few things the programms you guys gave me and restarted a few times so I don't know. I clicked reset defaults and it went away and hasn't come back. Maybe it isn't spyware afterall? I've got some nice little progs and learned a load of stuff again, As I frequently do when I mix with you guys, Thanks very much all of you, What a site, What a bunch of guys, Cheers.
bothered.
I did, Honest, Reset it, I did.Really.
bothered.
Glad you got it!
I have had one for a couple of weeks that I have been trying to get rid of and you guys gave me the ticket.
tks
bothered
It somehow managed to get installed one of my older systems (Inspire in the sig). The only way I could get rid of it for sure...
Format C:
Spyware programmers beware... I'm going to kick your ass if I can find you.
Download and run AdAware just for ****s and giggles. Again, make sure you have the very latest spyware definitions before you scan.
And it wasn't me. I may still be fighting adware, but no virus here.
It was gone yesterday but back this morning. I did a few things today and it was still there, I decided to click on a few of the buttons on it to see if I could get a name. It's a friggin search engine called 'search web now' I've no idea how it got in here!
I ended up with a help page, One question caught my eye, 'how do I uninstall any of your products?' There is a small file to download and run and PRESTO, It's gone. It's even gone from the view toolbars. I had avoided clicking on it before because I didn't know what it was and everybody here seemed to think it was something undesirable (and anything in here which I didn't put here is)
Thanks again all, Hopefully that is the end of it and I won't get another bullwhipping from Prime. Man he's mean with that thing.
bothered.
I think we were all so caught up about it being spyware blah blah that nobody though of checking to see if there was any kind of 'help' with the product.
At least the people from 'Search Web Now' were kind enough to give you the option of uninstalling their product.
Well done bothered for finally managing to get rid of the damn thing, and thanks to everyone else for keeping me amused (at bothered's expense I'm sorry to say) with this very interesting thread.
~Cyrix
NS
It's yet another lesson in don't overlook the obvious. Ain't hindsight a wonderful thing?
bothered.
This thing should be published. I was actually on the edge of my seat wondering how it would turnout.
A movie in the making?
Howabout this:
Did you see the movie?
No I read the book!
Becomes:
Did you read the book?
No I read the thread!