Nearly all were just cookies and easily removed,but i can't seem to be able to remove something that panda discovered.
It's called "IST.ISTBAR" and it's apparently in the registry but i cannot find it manually myself.
Undettered i persevered and found the following below,but although i have downloaded the app to fix it i have no idea how i do it.
Incident Status Location
Adware:adware/ist.istbar Not disinfected Windows Registry
To remove the "IST.ISTBAR"
Key point: Find the Backgroup .EXE which keep recreate the Reg key/Folder.
Just Del the istsvc.exe/IST folder/IST reg key will not work.
Most free Antispyware could not fix or kill it from the root (I tried 5 or 6
of them), but they can help you to find the problem.
To remove it, download the REGMON.EXE from www.sysinternals.com, put it in
any folder. Disconnect the internet connection, click the regmon.exe to star
t
it.
Start antispyware to scan, it will find the ist.istbar, let antispyware to
remove it. When the anitspyware start to remove the ist.istbar, check the
REGMON window (filter it to only show the IST ), you will see the istsvc.exe
keep coming back and recreate the REG key (IST and other in different place)
and the IST folder.
Keep using the REGEDT32 (or just click the any line in the regmon windows
that will bring you to the location where those key or file located) and
explore to Del the IST key/folder untill you see any *.*EXE in the regmon
window that tried to recreate the key/fold---That is the .EXE you need to De
l
it. Usually it will located in \WINNT, \Windows and call something like
kqbcay.exe, etc. You might need to use Task manager to kill the process in
order to Del it --You can use Task Manager to find the ISTSVC.exe and kill i
t
too but it will come back untill you kill/Del the main .EXE.
After delet the .EXE, rescan/remove all ist key/folder, reboot the system,
rescan and use regmon to check again. If no ist.isbar show up--you are OK.
Reconnect back to the internet.
Hope this will help.
ZZ
I have always found that all my problems have been explained and i have corrected them by the advice i've recieved here.I hope that this can also be explained to me as to what exactly i need to do but if anyone can help me please go slowly as i'm not as good as you guys on a PC.
I have something called A squared Hijack free which is another form of hijack this i presume and i will gladly run it if i have to.
I will also gladly DL hijack this and run that if that's preferable and post the results if needed.
I just don't understand the above method of removal that i found and need some help in understanding exactly how to remove this.
I'm running
XP Pro SP2
XP 2500+ barton CPU,1 gig PC 3200 ram,120 gig HDD,K7 MSI mobo,ATI RX 9250 AGP card.
I have NO issues OR problems just this annoying thing that i can't get rid of.
Thanks to anyone who can help.
Deanbo
Sign In
Create Account
