Hi All, One of my computers caught Zentom System Guard from a website I thought was okay and began displaying "System Warning, etc" messages in lower right corner plus all the other phoney stuff. I didn't fall for the "story" but it still loaded me up with .exe files which I have been hunting and deleting (over 20 so far) from the directories and in the registry. I found that the name "Kuerway Tech" was in the description of most of them and that helped somewhat.
However, regedit, process explorer and msconfig wouldn't stay displayed when I tried to use them. I renamed regedit.exe to test1.exe and it works okay and I finally got msconfig going, that let me shut down and then delete one of the bad files in startup.
Anyway, to your knowledge what would the guy probably have used to make these programs display, then exit in less than a second? I figured it was something in the registry, but I'm not knowledgable enough about the many regedit, etc entries to know what is correct and what isn't.
I'm still getting the "System Warning. Spyware protection is disabled. Your personal data is...blah , blah, etc" and when the computer boots it accesses the hard drive much heavier and longer than usual (say 2-3 minutes).
I'm using my laptop to research this so that I won't spread the trojan to my network or to the internet.
Any help or suggestions would be much appreciated. Mike