Homepage Stuck on Iwantsearch.com

My homepage is hopelessly stuck on ‘iwantsearch.com’ as is my toolbar. I am running WinXP SP1a and IE6 for my browser. Further I have Ad-ware SE PRO and have Adwatch Monitor active, both with current definitions.

I have performed all the tests listed in your READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal article; the only thing found were in temp folders that CCCleaner removed.

Attached is the log from Hijack This (I hope I was correct in sending it now). I might note that I had the Hijack This website analyze a couple of previous logs, told the program to fix everything that the website said it could, but the same ‘Nasty’ entries seem to reappear.

Thanks so much if someone can help here, I’m pulling what few hair I have left out over this!

Chris

 

Somehow my log didnt attach, here it is:

 

lets see something shall we?

http://www.iwantsearch.com/uninstall/remove.exe
that should take care of that toolbar(let me know if it works)
do a windows update
boot it safe mode and run hjt again
and save your log as a .txt file
reboot in normal mode
attach it
(manage attachments)
dont forget to click upload

 

Thanks Jacher, I tried iwantsearch's remove tool, and it didnt do anything.

Chris

 

Please follow Chaslangs post above yours at this time.

 

Sorry Charslang. I tried earlier to it post as an attachment, but here goes again. Thanks for your help and understanding, I often think some of the '* For Dummies' series was written for me!

Chris

 

Hi Chris,

You could also try looking in Add or Remove Programs or running a search of your computer for SBSoft and/or Apropos Media as they are related to Iwantsearch. (I think)

Best luck,
PP

 

A snag or two... I could not find the process ‘bmupdate.exe’ running, and I did check all users. I hope its okay I have attached two jpg’s showing the Task Manager I was viewing. BTW still the same problem with the homepage.

Also, I found a file ‘BUUPDATE.EXE-2563E73A.pf’ by doing a files and folders search, but in the c:\Windows\Prefetch folder, not ...System32.

What to do now, shoot this @*&* thing? Thanks for your continuing help.

Chris

 

CORRECTION - In the below reply I meant I found the file BMUPDATE.EXE-2563E73A

Sorry for the typo

Chris

 

Did you run a search of your machine for SBSoft and/or Apropos Media as I suggested? I am fairly certain that SBSoft is responsible for Iwantsearch.

The uninstall tool Jarcher linked is indeed effective for removing earlier versions of Iwantsearch. Did you try running it in Safe Mode w/ System Restore Off?

Just tossing out some ideas – Take ‘em or leave ‘em

Best luck,
PP

 

Thanks for everyones help. FYI I tried the uninstaller in both normal and safe modes, no luck. I also tried performing the HJT fixes suggested, but they returned on the next scan. This is related to SBSoft I did notice, but something prevents these keys from being changed.

I finally gave up, installed Firefox and removed IE. Not what I wanted, but gave up. Thanks again for everyones time and help.

Chris