How to dump isobuster

[Quack]

Does that folder path even exist? It sounds like you uninstalled the
IsoBuster program but you have yet to uninstall the foistware that was
offered during the *install* and that you chose to include (i.e., the
IsoBuster Toolbar which could be the Ask, Bing, Google, or Yahoo toolbar
depending on which foistware that IsoBuster had rebranded in that
version of the installer) because you did not elect to NOT include the
foistware during the install of IsoBuster. You need to start looking
for "toolbar" programs to uninstall since they will have a separate
uninstaller from the IsoBuster program.

http://forum.videohelp.com/threads/...0c9bb1c6a7f2&p=1951191&viewfull=1#post1951191

If the toolbar is the width of the page and a few inches deep (like
isobuster's), and all of the progs you mentioned are similar, it seems
that I should dump all and look for a search bar and a tool bar that are
unrelated to the present messy situation.

At present I can't even get isobuster dumped from the web search pad.

 

[Quack]

If the toolbar is the width of the page and a few inches deep (like
isobuster's), and all of the progs you mentioned are similar, it seems
that I should dump all and look for a search bar and a tool bar that are
unrelated to the present messy situation.

At present I can't even get isobuster dumped from the web search pad.

I found:

http://www.freeuninstalltool.com/Security-and-Privacy/Uninstall-IsoBuster-111424.html

Does anyone have the courage to use this?

Thanks a million

 

[VanguardLH]

I found:

http://www.freeuninstalltool.com/Security-and-Privacy/Uninstall-IsoBuster-111424.html

Does anyone have the courage to use this?

Not without using an install monitor (e.g., Zsoft Uninstaller (freeware)
or Revo Uninstaller (payware)) AND not until after saving a partition
and MBR image backup. First I'd install IsoBuster - with all its crap
foistware (i.e., typical install) - into a VM and then see if this tool
got rid of it all inside the VM. Then, in the real host (not in the
VM), and AFTER the image backup but before installing/using this unknown
software, I'd create a snapshot of the system's state using the
uninstall monitor tool. After the install of this tool, I'd compare the
"before" snapshot with the system's "after" state to record the changes.
Then I'd go look at the log of recorded changes to see if there was
anything obviously suspect or malicious.

There is a lot of malware and rogueware pretending to be useful. Hear
of the AntiVirus 2009 rogueware that hit so many neophyte users? When I
look up the domain registration for freeuninstalltool.com, the
registrant is hiding behind a private registration at GoDaddy. That
means the registrar (GoDaddy) doesn't show the real registrant's info in
the domain registration but instead shows the registrar (GoDaddy). This
is a loop-hole in IANA's requirement that all domain registrations show
the responsible party owning the domain but registrars let their
registrants hide by assuming that responsibility (and charging extra for
that service to the registrants). It lets the registrants hide.
Despite all the excuses, like getting spammed (which is easily avoided
by using a dedicated e-mail account that filters out all e-mails that do
not originate from their registrar), registrants don't hide for a good
reason. That's the first red flag.

A DNS lookup on freeuninstalltool.com returns 76.73.13.182. A
traceroute goes back to and stops at:

tor-proxy.fejk.se [76.73.13.182]

Hmm, maybe that's a TOR node. If so, another red flag. Do you really
want to get anything from an unknown and untrusted site, especially
anything involved with TOR file sharing? ".se" is the ccTLD for Sweden;
however, geolocation lookup on that IP address shows it is around
Chicago, IL USA and is owned by Comcast (an ISP). So some customer of
Comcast is illegally (according to Comcast's TOS) using their home PC as
a server to dole out software from who knows where written by unknown.
Complaints against the site include operating an open or anonymous proxy
(also violates Comcast's TOS). More red flags.

http://www.mywot.com/en/scorecard/freeuninstalltool.com has a poor
rating but http://www.siteadvisor.com/sites/freeuninstalltool.com has a
good rating (but these ratings are slow to get updated and test them
differently). Personally I wouldn't touch it. Stay away!

 

[Quack]

I found:

http://www.freeuninstalltool.com/Security-and-Privacy/Uninstall-IsoBuster-111424.html

Does anyone have the courage to use this?

Not without using an install monitor (e.g., Zsoft Uninstaller (freeware)
or Revo Uninstaller (payware)) AND not until after saving a partition
and MBR image backup. First I'd install IsoBuster - with all its crap
foistware (i.e., typical install) - into a VM and then see if this tool
got rid of it all inside the VM. Then, in the real host (not in the
VM), and AFTER the image backup but before installing/using this unknown
software, I'd create a snapshot of the system's state using the
uninstall monitor tool. After the install of this tool, I'd compare the
"before" snapshot with the system's "after" state to record the changes.
Then I'd go look at the log of recorded changes to see if there was
anything obviously suspect or malicious.

There is a lot of malware and rogueware pretending to be useful. Hear
of the AntiVirus 2009 rogueware that hit so many neophyte users? When I
look up the domain registration for freeuninstalltool.com, the
registrant is hiding behind a private registration at GoDaddy. That
means the registrar (GoDaddy) doesn't show the real registrant's info in
the domain registration but instead shows the registrar (GoDaddy). This
is a loop-hole in IANA's requirement that all domain registrations show
the responsible party owning the domain but registrars let their
registrants hide by assuming that responsibility (and charging extra for
that service to the registrants). It lets the registrants hide.
Despite all the excuses, like getting spammed (which is easily avoided
by using a dedicated e-mail account that filters out all e-mails that do
not originate from their registrar), registrants don't hide for a good
reason. That's the first red flag.

A DNS lookup on freeuninstalltool.com returns 76.73.13.182. A
traceroute goes back to and stops at:

tor-proxy.fejk.se [76.73.13.182]

Hmm, maybe that's a TOR node. If so, another red flag. Do you really
want to get anything from an unknown and untrusted site, especially
anything involved with TOR file sharing? ".se" is the ccTLD for Sweden;
however, geolocation lookup on that IP address shows it is around
Chicago, IL USA and is owned by Comcast (an ISP). So some customer of
Comcast is illegally (according to Comcast's TOS) using their home PC as
a server to dole out software from who knows where written by unknown.
Complaints against the site include operating an open or anonymous proxy
(also violates Comcast's TOS). More red flags.

http://www.mywot.com/en/scorecard/freeuninstalltool.com has a poor
rating but http://www.siteadvisor.com/sites/freeuninstalltool.com has a
good rating (but these ratings are slow to get updated and test them
differently). Personally I wouldn't touch it. Stay away!

Many thanks genius VLH. You have kept me out of the fire
The only uninstaller I have is ZSoft but it finds nothing except what is
listed in Win 7's Programs and Features.

 

[VanguardLH]

The only uninstaller I have is ZSoft but it finds nothing except what is
listed in Win 7's Programs and Features.

You do know that it's a manual tool, right, and that you have to save a
snapshot (state of the host) BEFORE you install a program, install the
program (reboot it needed), and then compare the after-install state of
the host against the snapshot to record the differences. If you don't
do the manual snapshot-install-compare cycle then there's nothing for
Zsoft Uninstaller to list under the Analyzed Programs tab because you
didn't analyze (monitor) an install.

Zsoft Uninstaller has no real-time monitor constantly running in the
background to watch for installations. YOU do that manually. The Revo
Uninstaller free version also doesn't have a real-time monitor, either
(and I don't see that it has Zsoft's snapshot-install-compare scheme) so
you have to buy Revo Uninstaller to include their real-time monitor.

 

[Quack]

You do know that it's a manual tool, right, and that you have to save a
snapshot (state of the host) BEFORE you install a program, install the
program (reboot it needed), and then compare the after-install state of
the host against the snapshot to record the differences. If you don't
do the manual snapshot-install-compare cycle then there's nothing for
Zsoft Uninstaller to list under the Analyzed Programs tab because you
didn't analyze (monitor) an install.

Zsoft Uninstaller has no real-time monitor constantly running in the
background to watch for installations. YOU do that manually. The Revo
Uninstaller free version also doesn't have a real-time monitor, either
(and I don't see that it has Zsoft's snapshot-install-compare scheme) so
you have to buy Revo Uninstaller to include their real-time monitor.

Thank you Vanguard. Sad to say this is beyond me and I'll have to try
something else. Have a great week!!!