hijack this help

Hello, I am quite a novice at this. My computer has been running slowly and then locking up. It appears I have some spyware. I have followed the instructions on the post on using hijack this with limited sucess. I ran the cleaner, Search and destroy, And Counter spy. They showed something called ist.istbar which was removed. bitdefender could not run. Here is the hijackthis log. I will try to send the other reports before the coputer freezes. I also could not follow how to install hijack this as described in the post. Any help will be greatly appreciated .Thanks.

 

This is what counterspy found


IST.ISTbar Browser Hijacker more information...
Details: ISTbar is an Internet Explorer Hijacker, which modifies your homepages and searches without a user’s consent using an Internet Explorer toolbar.
Status: Quarantined

Infected files detected
c:\delus.bat

 

my computer had spysweeper on it and norton 2005. the definitions were about 4 months expired and I had renewed it yet.

 

Did you run a Panda Scan? Also, I need GetRunKey and ShowNew logs.

 

pandascan just kept running and locking up. i could not get the other two to run. i will try again today

 

here is the hijackthis log after changing the file name to analyse.exe

 

Getrunkey text file

 

shownew file . sorry i could not get the attachment to work

Edit by bjgarrick: Inline log attached!

 

If you have Cable/DSL try to run the scan in Safe Mode w/ Networking.

 

bitdefender file

 

Please look in Add/Remove Programs for the following and uninstall them if found:

Viewpoint Media Player

Now scan with HijackThis and check the boxes for the following entries:
( Make sure ALL browser windows are closed when you click FIX )

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.toshiba.com/search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.toshibadirect.com/dpdstart

O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O14 - IERESET.INF: START_PAGE_URL=http://www.toshibadirect.com/dpdstart

Again, make sure ALL browser windows are closed when you click FIX.

Next, run CCleaner to clean up cookies and temp files.

Next Reset Web Settings & Default Security Settings

To Reset Web Settings:
Right click on your desktop Internet Explorer icon and select Properties. Then click the Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK.

If you do not have an Internet Explorer icon on your Desktop, click Start, Control Panel (for some systems it may be Start, Settings, Control Panel), Internet Options, Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK

To Default Security Settings:
Right click on your desktop Internet Explorer icon and select Properties. Then click the Security Tab and click Default Level for Internet, Local Intranet, Trusted Sites, and Restricted Sites.

Note for IE 7 users:
Select Internet Options, then the Advanced Tab and then the Reset button under Reset Internet Explorer Settings.

 

Thank you so much. I think that fixed it. A couple of questions. What was causing the problem? My kids had been using the computer to play games at miniclip and addictinggames.com when my troubles started-- could these sites have loaded spyware? should they not use these sites? lastly since I have spysweeper on my computer should I disable search and destroy and counterspy?
Thanks again

 

Hard to say really, general cleanings usually take care of many minor problems.

I've never used them so I can't say for sure, most online games are safe just be careful what you install. Make sure you know what your installing and where it came from.

If you've purchased Spy Sweeper then I would uninstall any other antispy programs as SS is the best IMO.

 

You should see this article on How to Protect yourself from malware!