Help me remove this stuff

Did you put this stuff on your PC yourself? Many gamers appear to use this site. Do you need it? Look in Add/Remove programs for anything related to this and uninstall if you don't need or want it.

It all depends on what is under the policies key.

Run the below procedure and attach the runkeys.txt log to your next message.

• Using GetRunKey

 

I would not worry about it!

It does not show in the registry key you said eTrust mentioned. It is a kelogger but it is normally one that the end user installs themselves. Did you install it at point in time? Unless you purchase the program, it was only a 40 minute trial.

Let's get an installed programs list from HijackThis too!

• Run HijackThis, click Open the Misc Tools section
• Click Open Uninstall Manager
• Click Save List (generates uninstall_list.txt)
• Click Save, to save it to a file where you can find it.
• Attach the uninstall_list.txt file to your next message.

 

You did not answer my previous question about Actual Spy. I said:

Click Start, Run, and then paste the below into the box and click OK.

regedit /E %systemdrive%\xlmpol.txt "HKEY_Local_Machine\Software\Microsoft\Windows\CurrentVersion\Policies"

Now attach the below file to your next message. I'm assuming that C is your boot drive.

C:\xlmpol.txt

 

In message number 1 you said:

If you look at the log you just posted you will notice there is no such registry key. There is one with explorer\run But even it has no Actual Spy under it. It is empty.

I seem to remember having problems with you posting incorrect registry keys once before. You must learn to be EXACT in your postings.

 

Yes! It will probably go away if you just delete the empty key. The below key is what I'm referring to:


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer\run]

 

Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

 

This has nothing to do with your first problem of Actual Spy! And it is not really malware. It is just Logitech Desktop Messenger. If you don't use it, uninstall it. It is just a waste of system resources for most people.

 

Post a complete log from Pest Patrol. DO NOT HAND TYPE. Post a real log. My first suggestion though would be to stop using Pest Patrol unless you are going to buy it.

 

It probably will! But first, do you still have Registrar Lite installed from the last time you were here with a problem.

If not, reinstall it.

Download and install Registrar Lite make sure to download it from one of the Majorgeeks links and not the Author site.

Copy and paste the below into the Address box of registrar lit and hit the Enter key.

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer\run

Then click the Security pull down on the top menu and choose Take Ownership. Click OK in the next window to approve it.

Now right click on the above key and select delete. Make sure it deleted the key. Refresh and check to make sure it is gone. Tell me whether it deleted or not.

Now exit Registrar Lite

Does PestPatrol still detect it? Did you get any error messages while doing any of the above?

 

Unless you are going to buy it, why do you want it. It does not fix anything! Do you like having all these false positives or detections of things that are not really problems? You did not have a keylogger but it told you you did simply because a registry key existed. All the detections in zonemap\domains were wrong too. They were things put into your Restricted Zone by Spybot or similar and are there to protect you.