ISearchTech.YSB

I run Spyboot S&D and found ISearchTech.YSB and i can't delete it...
I already did all the thing in the sticky notes, don't know if i did it wrong or not, but after i did all those things, Spyboot S&D still find the ISearchTech.YSb.

 

You have HijackThis installed incorrectly. Please install Hijackthis to C:\Program Files\HJT.

Do you connect to a proxy server?

 

ok, did i instal it right now?
I have home network for my computer, is that what you mean?
I'm sorry, i really new with all this things.

 

Look in Add or Remove Programs and uninstall SurfSideKick if it is present.

Run CCleaner. If you have Windows XP delete the contents of C:\WINDOWS\Prefetch.

Then, as an added precaution, Go to Start -> Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin

And Click OK.

Now scan and have HJT Fix the following:

Download
- Pocket Killbox
- ExplorerXP

Now run Pocket Killbox:

Choose Tools -> Delete Temp Files and click the RED X.

Run Killbox.exe. Paste the below filenames into KILL BOX one at a time. Check mark the box that says "Delete on Reboot" and checkmark the box "Unregister DLL" (If available) Click the RED X and it will ask you to confirm the file for deletion…say YES and when the next box opens prompting you to reboot now...click NO...and proceed with the next file. Once you get to the last one click YES and it will reboot. Note many of the file list below may not exist but we need to check for them anyway.

If Killbox does not reboot or you get a Pending Operations type error message just reboot your PC yourself.

Now boot into SAFE MODE

Open ExplorerXP navigate to and DELETE the following: (Some of these may have already been deleted by Pocket Killbox)

Now run CCleaner. If you have Windows XP delete the contents of C:\WINDOWS\Prefetch.

Then, as an added precaution, Go to Start -> Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin

And Click OK.

REBOOT to Normal Mode.

Follow the directions for Running Ewido Security Suite. Post the Ewido log.

Post a fresh HijackThis log and post the complete BitDefender log.

 

ISearchTech.YSB still can be found by Spyboot and Ewido found some spyware and trojan too, but BitDefender doesn't find anything. My computer seems fine now, no popup appears, but just want to make sure everyting's ok.

 

Empty the Norton Protected Recycle Bin.

Open Regedit, navigate to and delete the following Registry Key: HKEY_LOCAL_MACHINE\SOFTWARE\YourSiteBar

REBOOT

Does Spybot still find ISearchTech.YSB? If so post the Spybot log.

 

i can't delete the folder, here's the Spyboot log attached.

 

Download and Install
- Registrar Lite 2.0

Run Registrar Lite; navigate to and delete HKEY_LOCAL_MACHINE\SOFTWARE\YourSiteBar.

{EDIT} To take ownership of the key, click-on the registry key, then select Security in the Menu and then click-on Take Ownership.

 

I still can't delete the foler by using Registrar Lite and took the ownership.

 

Follow the directions for Running Spy Sweeper. Make sure you update the definitions before scanning your system.

Post the Spy Sweeper log.

 

well i guess the spy sweeper fix the problem. Spyboot doesn't find n e thing, and neither does ewido. here's the spy sweeper log and latest HJT.
Thank's a bunch, I appriciate it very much.

 

Your system appears to be clean.

Disable System Restore and then enable System Restore. This will flush all your restore points and create a new clean one for your system.

System Restore
How to Protect yourself from malware!

Safe surfing.