One was listed under HKEY_LOCAL_MACHINE\Software\Microsoft\WindowsNT\CurrentVersion\Svchost
I would delete the file here and it would be reinstalled if I simply left the folder and came back. How can I find the source of files like this? Is there a utility that records all actions and the files that initiate them so a guy can find out where its coming from?
Another I still have not removed from my pc and it hopefully is the last infection that has hijacked IE. This file I found with Security Task Manager which wont remove it unlicensed. I wont buy it because I dont trust the product promises anymore. Any way the file is shown in the attached image.
There is no directory, it cant be found with search, and I have no clue where to begin looking. How do you know?