I.Search.Tech.YSB trouble

Hello,

Can anyone give me advice on how to remove ISearchTech.YSB. It has been on the computer for a while. I have run the read me instructions, all except for the windows defender as it cannot find the genuine certificate for windows. I have to look into it but i asure you it is. It shows a path of HKEY_LOCAL_MACHINE\SOFTWARE\YourSiteBar. I have tried deleting the key in normal and safe mode, and all the checks could not get rid of it. Also eveytime i run Spybot it comes up with these two: Windows Security Center.FirewallDisableNotify and Windows Security Center.AntiVirusDisableNotify. i can delete the regisrty for them but they keep coming back. CCleaner deleted a lot , CShredder did not find anything, Adaware only found net cookies. Vundo found nothing. My spybot log ans HJT log are attached.

Please help,

Davey.

 

The only indication that you have or had YourSIte Bar is this Registry entry HKEY_LOCAL_MACHINE\SOFTWARE\YourSiteBar. Open REGEDIT and delete that entry.

 

I have tried on many occasions to do this, both in normal and safe mode. It just says 'error whilst deleting key' or something to that effect. Is there a special trick to get round this?

Davey.

 

Download and install Registrar Lite 2.0; try deleting the key with it.

 

Thanks for the suggestion, i'd love to tell you it worked, unfortunately, same message "access denied". I tried deleting its contents instead, but no cigar! Any further suggestions?

Davey.

 

Take ownership of the key.

In Registrar Lite, click on the key, click Security in the menu, select Take Ownership.

 

I downloaded registrarlite and the 'take ownership function' function is only available in the paid for version. Unfortunately, i neither have access to a payment method nor can i afford to buy a years sub. Any other tricks up your sleeve?

 

Follow the directions for Running Ewido Anti-Malware.

Post the Ewido log when finished.

 

Bingo! Ewido trial version could not do it, but i downloaded registrarlite again and it let me take control and i deleted it, no fuss!!

Thanks guys, you're angels! (in a manly kind of way !!! )

Dave.

 

You're Welcome.