Prior log post and suggested remedies appeared to correct pesky ghost dialer and hijacker....... HOWEVER; C:\WINDOWS\secure.html is still lurking as a listing along with selected homepage, although it now longer shows up on log. Subsequent/recent Norton scan found 15 (non virus) items and was capable of removing all but the following 5 listings........which Spybot and Adware scan DID NOT reference/find. WHY can't (costly) norton software remove them......and why aren't they even recognized by Spybot or Adware? I have known about the bridge.dll, which can't be removed using novice methods. Is it "safe" to delete any of these listing.......even if I COULD locate the files, i.e., > was unable to follow the routes beyond the first three references: C - WINDOWS - Temporary Internet files. WHERE IS Content.IE5? (bridge.dll, a.exe, cax.dll >could not find Belt.cab (or cdt bbi8016.exe) in WINDOWS TEMP a.exe The compressed file a.exe within C:\WINDOWS\Temporary Internet Files\Content.IE5\M00KJ1RI\bridge.cab is a Adware threat. belt.exe The compressed file Belt.exe within C:\WINDOWS\TEMP\Belt.cab is a Adware threat. bridge.dll The compressed file bridge.dll within C:\WINDOWS\Temporary Internet Files\Content.IE5\M00KJ1RI\bridge.cab is a Adware threat. cax.dll The compressed file cax.dll within C:\WINDOWS\Temporary Internet Files\Content.IE5\0FOT0BAT\us_cax.cab is a Adware threat. cdt_bbi8016.exe The file C:\WINDOWS\TEMP\cdt_bbi8016.exe is a Adware threat.