@Pancake; thankyou.
If I run the HJT fix on those restrictions will they be recreated?
HAve SpybotS&D with IE tweaks in place: lock home page and block bad downloads: is that them?
Also i have changed home page from (heh) ninemsn and default search page from same to Google. Should I fix the R3?
Have run BD and Panda on line : see attached:
Almost Every Av I scan with warns me re XPkey finder: PSWinTool
Also dl'd sdt restore from here:
http://www.security.org.sg/code/sdtrestore.html
a long time ago: delusions of grandeur LOL
This is always cited as rootkit.
Most AV with high heuristics detect the d'l of XPT tools from here:
http://radsoft.net/
due to encryption, as rootkits.
Also what was the blank "ADS" entry in gmer scan?
Finally, any recommendations to add extra lock down:
?socket shield
?prevx
?which process monitor has the least confusing pop-ups?
?how can I watch my internet traffic and where it goes to if latest rootkit/trojan combos bypass firewalls.
?antihook apps.
This is a scary thread:
http://forum.sysinternals.com/forum_...?TID=7003&PN=1
Thanks again for helping me.
Five over
LOL:In fact there are lots of scary threads there !!
__________________
a little knowledge can be a dangerous thing