"ISTsvc" still won't go away.............

G

Guest

I tried the suggested approach from Dave L., running it 2 or 3 times. I did
catch 1
"trojan" on the second try, but after I rebooted and turned back on the
restore and again rebooted, wala.... there in the programs sublibrary was the
good ol
"ISTsvc.exe". which of course doesn't allow me to rename it and delete it.
or just delete it. It also showed back up in the registery. Anything else
I can do?????
 
D

David H. Lipman

From: "Richard Hollister" <[email protected](donotspam)>

| I tried the suggested approach from Dave L., running it 2 or 3 times. I did
| catch 1
| "trojan" on the second try, but after I rebooted and turned back on the
| restore and again rebooted, wala.... there in the programs sublibrary was the
| good ol
| "ISTsvc.exe". which of course doesn't allow me to rename it and delete it.
| or just delete it. It also showed back up in the registery. Anything else
| I can do?????
|
| --
| Richard

Do NOT create a new thread. Keep you posts with in the same thread when you are discussing
the same topic/subject.

There are anti malware News Groups specifically for this type of discussion.

microsoft.public.scripting.virus.discussion
microsoft.public.security.virus
alt.comp.virus
alt.comp.anti-virus
alt.privacy.spyware

Dump the contents of the IE Temporary Internet Folder cache (TIF)

start --> settings --> control panel --> internet options --> delete files

Use BHODemon -- http://www.definitivesolutions.com/bhodemon.htm

1) Download the following four items...

McAfee Stinger
http://vil.nai.com/vil/stinger/

Trend Sysclean Package
http://www.trendmicro.com/download/dcs.asp

Latest Trend Pattern File.
http://www.trendmicro.com/download/pattern.asp

Ad-aware SE (free personal version v1.05)
http://www.lavasoftusa.com/

Create a directory.
On drive "C:\"
(e.g., "c:\New Folder")
or the desktop
(e.g., "C:\Documents and Settings\lipman\Desktop\New Folder")

Download SYSCLEAN.COM and place it in that directory.
Download the Trend Pattern File by obtaining the ZIP file.
For example; lpt510.zip

Extract the contents of the ZIP file and place the contents in the same directory as
SYSCLEAN.COM .

2) Update Ad-aware with the latest definitions.
3) Disable System Restore
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
4) Reboot your PC into Safe Mode [F8 key during boot]
and shutdown as many applications as possible.
5) Using Trend Sysclean, Stinger and Ad-aware, perform a Full Scan of your
platform and clean/delete any infectors/parasites found.
(a few cycles may be needed)
6) Restart your PC and perform a "final" Full Scan of your platform using the three
utilities; Trend Sysclean, Stinger and Adaware
7) Re-enable System Restore and re-apply any System Restore preferences,
(e.g. HD space to use suggested 400 ~ 600MB),
8) Reboot your PC.
9) Create a new Restore point

* * Please report your results ! * *
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Please Help! Virus? Avast, Firefox, Windows update quit working 4
how to disable file sharing in xp firewall forever? 3
Pls. help -- XP won’t boot after spyware/virus cleanup 2
MCAFEE SECURITY CNTR UPDATE WON'T GO AWAY 3
Startup Annoyances Won't Go Away 3
Print jobs won't go away 1
TROJAN INFECTION - HELLLP! 3
The program that won't go away 7

Top