Help - trying to remove BraveSentry etc

[StckFigure]

I sort of know how to backup things with regedit, but because it's only "sort of", it would probably be best if you could walk me through it so that I don't wreak havoc with my registry. What I would do is something to the extent of opening regedit, saving it all as "regbackup" or something, deleting those keys, and then seeing what happened. That's probably not the best approach, though. I'll run Combofix afterwards. Thanks!

Weather getting nicer? We're on tornado alert here today!

[PhilliePhan]

Weather getting nicer? We're on tornado alert here today!

Well . . . That's a side effect of warming up. Fortunately I live on rather high and rolling land - not really ideal for tornadoes, but we still get our share of warnings.

-- Actually, you can just save the scan of those keys you made with Bill James' RegSearch and that would be fine for a backup. Heck, even your post would suffice....

Using regedit, you just select "export" to export anywhere from a single key to the entire registry to notepad.

-- Or, you could copy the below in the quotebox to NOTEPAD and save it to your desktop as Fixme.reg
Then DoubleClick on it and allow it to merge into the registry.

There are some blank spaces in the keys that may be troublesome - you might indeed have to remove them manually...

REGEDIT4

[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\ LEGACY_*00FF*00FF*00FF*00FF*00C0*00FF*0012WINDBG48 ]

[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\* ***+*windbg48]

[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\ LEGACY_*00FF*00FF*00FF*00FF*00C0*00FF*0012WINDBG48 ]

[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\* ***+*windbg48]

[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\R oot\LEGACY_*00FF*00FF*00FF*00FF*00C0*00FF*0012WIND BG48]

[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\****+*windbg48]

I've gotta run - Will try to check back tonight.

Definitely do the combofix again and post the fresh log.

Cheers
PP