There appears to be a new "smarter" version of spywareguard 2008, that will not allow the installation of any program that can clean the machine. I was able to run the Norman scanner, but it doesn't appear to clean this version. Has anyone been able to find the hidden executable that keeps replacing all the files and reg entries that get deleted by the tools/manual removal? I found the DLLs in the C:\Documents and Settings\All Users\Application Data\Microsoft\Internat Explorer\DLLs folder, and have set the File Permission to Deny for all accounts but one Admin account. I am not sure if this can be done on XP Home. I also had to take ownership of the files, as the permission had been set based on the user account that was logged on when the malware installed itself. I am now able to logon with a limited user account, without spywareguard starting up, but I still cannot get malwarebytes to install. The executable launches (RunAs), and then disappears. I will let Norman Malware Cleaner run all night, and see if it can repair it further. I hope this helps someone smarter than me to run this to ground. gap