I have an issue concerning registry settings for trusted certificates in my XP Home Edition PC. My spyware/malware utility Pest Patrol reports that Claria Corporation has installed a trusted certififcate in my registry. Pest Patrol is able to temporarily remove this annoyance, however it seems to reinstall itself after a few browses on the internet. SpyBot S and D, AdAware 6.0 and Mcafee VirusScan do not report this adware annoyance since it is registered in the PC as a trusted certificate. When the adware is active it affects the browser web pages with a 404 Server cannot be found error or a page that doesnt load properly, incomplete or not at all. I also get an error message stating that my system clock setting is incorrect and needs to changed when trying to login from MSN Explorer. I try synchronizing the clock and that doesnt help. When I clean the Claria adware with Pest Patrol everything works fine again until the adware updates or reinstalls itself. I am not able to view this trusted certificate in IE 6, however I have noticed some suspicious registry settings that have meaningless symbols under the HKEY_CURRENT_USER/SOFTWARE/MICROSOFT/SYSTEM CERTIFICATES. How can I refresh the system certificates without getting this adware certificate back in? I am not comfortable with editing this part of the registry and also not comfortable with an adware companie's certificate in my PC. Please advise. Thanks.

You downloaded something you shouldn't have.
Have a visit here:
http://www.pcpitstop.com/

[Be sure to visit our new Gator Information Center. Whether or not you've ever encountered
Gator--which recently changed its name to Claria--find out what you need to know about the
company and its products].
[Gator applications include eWallet, DateManager, WeatherScope, and PrecisionTime.
PrecisionTime keeps your system clock up to date.] I wonder which one you have?
http://www.pcpitstop.com/gator/
===
SpywareBlaster doesn't scan and clean for spyware - it prevents it from ever being
installed.
http://www.javacoolsoftware.com/spywareblaster.html
====
Keep SpywareBlaster updated. SpyBot S and D, AdAware 6.0 also. McCrappy VirusScan won't
do any good
--
Hope this helps. Let us know.
Wes

In news:BFE35283-2AE5-40EC-96B3-(E-Mail Removed),
phonedaddy <(E-Mail Removed)> hunted and pecked:
> I have an issue concerning registry settings for trusted certificates in my XP Home
> Edition PC. My spyware/malware utility Pest Patrol reports that Claria Corporation has
> installed a trusted certififcate in my registry. Pest Patrol is able to temporarily
> remove this annoyance, however it seems to reinstall itself after a few browses on the
> internet. SpyBot S and D, AdAware 6.0 and Mcafee VirusScan do not report this adware
> annoyance since it is registered in the PC as a trusted certificate. When the adware is
> active it affects the browser web pages with a 404 Server cannot be found error or a
> page that doesnt load properly, incomplete or not at all. I also get an error message
> stating that my system clock setting is incorrect and needs to changed when trying to
> login from MSN Explorer. I try synchronizing the clock and that doesnt help. When I
> clean the Claria adware with Pest Patrol everything works fine again until the adware
> updates or reinstalls itself. I am not able to view this trusted certificate in IE 6,
> however I have noticed some suspicious registry settings that have meaningless symbols
> under the HKEY_CURRENT_USER/SOFTWARE/MICROSOFT/SYSTEM CERTIFICATES. How can I refresh
> the system certificates without getting this adware certificate back in? I am not
> comfortable with editing this part of the registry and also not comfortable with an
> adware companie's certificate in my PC. Please advise. Thanks.

Thanks Wes, I have been to Gain, Gator and Claria websites. Of course, there is no clear courses of action at the websites to remove their trusted certificate. It only addresses the touted applications they offer, nothing about the trust certificate. I do remember hitting an Overture sponsored website while surfing the net and not being able to escape their download window popups because of the sheer numbers of the pop up and pop under windows. There is no clear defined course of action at the various Microsoft centers either for removing and reinstalling trusted certificates. So, anyone out there with a good suggestion? I have noticed that the net is strangely silent on the issue of trusted certificates being spoofed and invisibly installed on PC's without the users express permission or knowledge, due to recent concerns of any entity being able to issue a digitally signed certificate these days or being able to slide in on the coat tails of a master trusted root certificate. Guess I better turn off the automatic Trusted Certificates update feature in XP before who knows what else gets in this PC.

Hey Phonedaddy! Glad to see this post! On my comp also, Pest Patrol found
two reg entries in the Trusted Certificate key, and the entries were said to
be from Claria, which raised a red flag. However, I have not seen any
strange behavior. I also have Zone Alarm, and have not seen any unusual
outgoing activity, except OSE.EXE (this may or may not be related to the
Claria reg entries).

Here are the reg entries:
Pest Detected in
HKEY_CURRENT_USER\software\microsoft\systemcertificates\trustedpublisher\crl
s
Pest: Claria
User Action: registry entry ignored, NOT Quarantined


Pest Detected in
HKEY_CURRENT_USER\software\microsoft\systemcertificates\trustedpublisher\ctl
s
Pest: Claria
User Action: registry entry ignored, NOT Quarantined


So what's the deal with this stuff? Is it a mistake by PP? And do these
reg entries mean that there are, in fact, certificates from Claria on my
computer? If so, how the heck can you remove them? (I tried looking at the
list of certificates viewable from IE, but I can't see any with the name
Claria or Gator. Most of the certificates there have names that mean
nothing to me.)

--
ICQ#
"phonedaddy" <(E-Mail Removed)> wrote in message
news:BFE35283-2AE5-40EC-96B3-(E-Mail Removed)...
| I have an issue concerning registry settings for trusted certificates in
my XP Home Edition PC. My spyware/malware utility Pest Patrol reports that
Claria Corporation has installed a trusted certififcate in my registry. Pest
Patrol is able to temporarily remove this annoyance, however it seems to
reinstall itself after a few browses on the internet. SpyBot S and D,
AdAware 6.0 and Mcafee VirusScan do not report this adware annoyance since
it is registered in the PC as a trusted certificate. When the adware is
active it affects the browser web pages with a 404 Server cannot be found
error or a page that doesnt load properly, incomplete or not at all. I also
get an error message stating that my system clock setting is incorrect and
needs to changed when trying to login from MSN Explorer. I try synchronizing
the clock and that doesnt help. When I clean the Claria adware with Pest
Patrol everything works fine again until the adware updates or reinstalls
itself. I am not able to view this trusted certificate in IE 6, however I
have noticed some suspicious registry settings that have meaningless symbols
under the HKEY_CURRENT_USER/SOFTWARE/MICROSOFT/SYSTEM CERTIFICATES. How can
I refresh the system certificates without getting this adware certificate
back in? I am not comfortable with editing this part of the registry and
also not comfortable with an adware companie's certificate in my PC. Please
advise. Thanks.

Gator, Claria whatever !@@#%$#$%^ scumbags!!!!

Sorry, I didn't think of this before.

IE | Tools | Internet Options | General tab | Settings button | View Objects button
If you don't see one that looks obvious | Right click | Properties | Look at info under
all the tabs | If you find something you want to get rid of | Close Properties |
Right click | Remove.

If your not sure, remove it anyway. Worst case, you remove
http://v4.windowsupdate.microsoft.com/CAB/x...........
Which is for Windows Update. If you do happen to remove it (or something else you may
need),
the next time you go to Windows Update (or wherever) you will be prompted to download it
again.
No harm, no foul. I have four Downloaded Objects; Java, MS Office Templates, MS Office
Update
and Windows Update.
=====
********
I'm thinking that you get rid of the installed object(s) your certificate problem will be
a lot easier.
*********
=======
IE | Tools | Internet Options | Content tab | Certificate button |
Find the Claria Corporation certificate(s) you want and remove it (them).

Also, Try this:
Control Panel | Administrative Tools |Console1.msc
If you do not have the Certificates snap-in;
File | Add/Remove Snap-in | Standalone tab | Add button | Highlight Certificates | Add
button | Close button | OK
In Console | Find the Claria Corporation certificate(s)
1) Right click and Delete
Or;
2) Right click the Claria Corporation certificate(s) and drag to
Untrusted Certificates\Certificates
==============
HijackThis will find all kinds of stuff and can remove it for you. It will find Downloaded
Program Files, which are located in C:\WINDOWS\Downloaded Program Files.
-----
HijackThis
http://www.spywareinfo.com/~merijn/downloads.html

HijackThis (zipped):
http://tomcoyote.org/hjt/


--
Hope this helps. Let us know.
Wes

In news:645194F9-E3B3-4A0E-9090-(E-Mail Removed),
phonedaddy <(E-Mail Removed)> hunted and pecked:
> Thanks Wes, I have been to Gain, Gator and Claria websites. Of course, there is no
> clear courses of action at the websites to remove their trusted certificate. It only
> addresses the touted applications they offer, nothing about the trust certificate. I do
> remember hitting an Overture sponsored website while surfing the net and not being able
> to escape their download window popups because of the sheer numbers of the pop up and
> pop under windows. There is no clear defined course of action at the various Microsoft
> centers either for removing and reinstalling trusted certificates. So, anyone out there
> with a good suggestion? I have noticed that the net is strangely silent on the issue of
> trusted certificates being spoofed and invisibly installed on PC's without the users
> express permission or knowledge, due to recent concerns of any entity being able to
> issue a digitally signed certificate these days or being able to slide in on the coat
> tails of a master trusted root certificate. Guess I better turn off the automatic
> Trusted Certificates update feature in XP before who knows what else gets in this PC.

Diggy;
Gator, Claria whatever !@@#%$#$%^ scumbags!!!!

IE | Tools | Internet Options | General tab | Settings button | View Objects button
If you don't see one that looks obvious | Right click | Properties | Look at info under
all the tabs | If you find something you want to get rid of | Close Properties |
Right click | Remove. The certificate doesn't mean jack ****.

If your not sure, remove it anyway. Worst case, you remove
http://v4.windowsupdate.microsoft.com/CAB/x...........
Which is for Windows Update. If you do happen to remove it (or something else you may
need),the next time you go to Windows Update (or wherever) you will be prompted to
download it
again. No harm, no foul. I have four Downloaded Objects; Java, MS Office Templates, MS
Office
Update and Windows Update.
=====
********
I'm thinking that you get rid of the installed object(s) your certificate problem will be
a lot easier.
*********
=======
IE | Tools | Internet Options | Content tab | Certificate button |
Find the Claria Corporation certificate(s) you want and remove it (them).

Also, Try this:
Control Panel | Administrative Tools |Console1.msc
If you do not have the Certificates snap-in;
File | Add/Remove Snap-in | Standalone tab | Add button | Highlight Certificates | Add
button | Close button | OK
In Console | Find the Claria Corporation certificate(s)
1) Right click and Delete
Or;
2) Right click the Claria Corporation certificate(s) and drag to
Untrusted Certificates\Certificates
==============
HijackThis will find all kinds of stuff and can remove it for you. It will find Downloaded
Program Files, which are located in C:\WINDOWS\Downloaded Program Files.
The certificate doesn't mean jack ****.
-----
HijackThis
http://www.spywareinfo.com/~merijn/downloads.html

HijackThis (zipped):
http://tomcoyote.org/hjt/

--
Hope this helps. Let us know.
Wes

In news:(E-Mail Removed),
Diggy <(E-Mail Removed)> hunted and pecked:
> Hey Phonedaddy! Glad to see this post! On my comp also, Pest Patrol found
> two reg entries in the Trusted Certificate key, and the entries were said to
> be from Claria, which raised a red flag. However, I have not seen any
> strange behavior. I also have Zone Alarm, and have not seen any unusual
> outgoing activity, except OSE.EXE (this may or may not be related to the
> Claria reg entries).
>
> Here are the reg entries:
> Pest Detected in
> HKEY_CURRENT_USER\software\microsoft\systemcertificates\trustedpublisher\crl
> s
> Pest: Claria
> User Action: registry entry ignored, NOT Quarantined
>
>
> Pest Detected in
> HKEY_CURRENT_USER\software\microsoft\systemcertificates\trustedpublisher\ctl
> s
> Pest: Claria
> User Action: registry entry ignored, NOT Quarantined
>
>
> So what's the deal with this stuff? Is it a mistake by PP? And do these
> reg entries mean that there are, in fact, certificates from Claria on my
> computer? If so, how the heck can you remove them? (I tried looking at the
> list of certificates viewable from IE, but I can't see any with the name
> Claria or Gator. Most of the certificates there have names that mean
> nothing to me.)
>
> --
> ICQ#
> "phonedaddy" <(E-Mail Removed)> wrote in message
> news:BFE35283-2AE5-40EC-96B3-(E-Mail Removed)...
> > I have an issue concerning registry settings for trusted certificates in
> my XP Home Edition PC. My spyware/malware utility Pest Patrol reports that
> Claria Corporation has installed a trusted certififcate in my registry. Pest
> Patrol is able to temporarily remove this annoyance, however it seems to
> reinstall itself after a few browses on the internet. SpyBot S and D,
> AdAware 6.0 and Mcafee VirusScan do not report this adware annoyance since
> it is registered in the PC as a trusted certificate. When the adware is
> active it affects the browser web pages with a 404 Server cannot be found
> error or a page that doesnt load properly, incomplete or not at all. I also
> get an error message stating that my system clock setting is incorrect and
> needs to changed when trying to login from MSN Explorer. I try synchronizing
> the clock and that doesnt help. When I clean the Claria adware with Pest
> Patrol everything works fine again until the adware updates or reinstalls
> itself. I am not able to view this trusted certificate in IE 6, however I
> have noticed some suspicious registry settings that have meaningless symbols
> under the HKEY_CURRENT_USER/SOFTWARE/MICROSOFT/SYSTEM CERTIFICATES. How can
> I refresh the system certificates without getting this adware certificate
> back in? I am not comfortable with editing this part of the registry and
> also not comfortable with an adware companie's certificate in my PC. Please
> advise. Thanks.

I just removed six certificates because their Experation Date was expired.

--
Hope this helps. Let us know.
Wes

In news:645194F9-E3B3-4A0E-9090-(E-Mail Removed),
phonedaddy <(E-Mail Removed)> hunted and pecked:
> Thanks Wes, I have been to Gain, Gator and Claria websites. Of course, there is no
> clear courses of action at the websites to remove their trusted certificate. It only
> addresses the touted applications they offer, nothing about the trust certificate. I do
> remember hitting an Overture sponsored website while surfing the net and not being able
> to escape their download window popups because of the sheer numbers of the pop up and
> pop under windows. There is no clear defined course of action at the various Microsoft
> centers either for removing and reinstalling trusted certificates. So, anyone out there
> with a good suggestion? I have noticed that the net is strangely silent on the issue of
> trusted certificates being spoofed and invisibly installed on PC's without the users
> express permission or knowledge, due to recent concerns of any entity being able to
> issue a digitally signed certificate these days or being able to slide in on the coat
> tails of a master trusted root certificate. Guess I better turn off the automatic
> Trusted Certificates update feature in XP before who knows what else gets in this PC.

Diggy;
Ose.exe is Office Source Engine. Run by Setup.exe to copy installation
files from the source to a local installation source on the user's computer.
Often used during an Office 2003 installation.
--
Hope this helps. Let us know.
Wes

In news:(E-Mail Removed),
Diggy <(E-Mail Removed)> hunted and pecked:
> Hey Phonedaddy! Glad to see this post! On my comp also, Pest Patrol found
> two reg entries in the Trusted Certificate key, and the entries were said to
> be from Claria, which raised a red flag. However, I have not seen any
> strange behavior. I also have Zone Alarm, and have not seen any unusual
> outgoing activity, except OSE.EXE (this may or may not be related to the
> Claria reg entries).
>
> Here are the reg entries:
> Pest Detected in
> HKEY_CURRENT_USER\software\microsoft\systemcertificates\trustedpublisher\crl
> s
> Pest: Claria
> User Action: registry entry ignored, NOT Quarantined
>
>
> Pest Detected in
> HKEY_CURRENT_USER\software\microsoft\systemcertificates\trustedpublisher\ctl
> s
> Pest: Claria
> User Action: registry entry ignored, NOT Quarantined
>
>
> So what's the deal with this stuff? Is it a mistake by PP? And do these
> reg entries mean that there are, in fact, certificates from Claria on my
> computer? If so, how the heck can you remove them? (I tried looking at the
> list of certificates viewable from IE, but I can't see any with the name
> Claria or Gator. Most of the certificates there have names that mean
> nothing to me.)
>
> --
> ICQ#
> "phonedaddy" <(E-Mail Removed)> wrote in message
> news:BFE35283-2AE5-40EC-96B3-(E-Mail Removed)...
> > I have an issue concerning registry settings for trusted certificates in
> my XP Home Edition PC. My spyware/malware utility Pest Patrol reports that
> Claria Corporation has installed a trusted certififcate in my registry. Pest
> Patrol is able to temporarily remove this annoyance, however it seems to
> reinstall itself after a few browses on the internet. SpyBot S and D,
> AdAware 6.0 and Mcafee VirusScan do not report this adware annoyance since
> it is registered in the PC as a trusted certificate. When the adware is
> active it affects the browser web pages with a 404 Server cannot be found
> error or a page that doesnt load properly, incomplete or not at all. I also
> get an error message stating that my system clock setting is incorrect and
> needs to changed when trying to login from MSN Explorer. I try synchronizing
> the clock and that doesnt help. When I clean the Claria adware with Pest
> Patrol everything works fine again until the adware updates or reinstalls
> itself. I am not able to view this trusted certificate in IE 6, however I
> have noticed some suspicious registry settings that have meaningless symbols
> under the HKEY_CURRENT_USER/SOFTWARE/MICROSOFT/SYSTEM CERTIFICATES. How can
> I refresh the system certificates without getting this adware certificate
> back in? I am not comfortable with editing this part of the registry and
> also not comfortable with an adware companie's certificate in my PC. Please
> advise. Thanks.

Yeah that's what I found out, but I can't figure why it calls out a couple
of times every day.

--
ICQ#
"Wesley Vogel" <(E-Mail Removed)> wrote in message
news:6rPIb.710409$Tr4.1793214@attbi_s03...
| Diggy;
| Ose.exe is Office Source Engine. Run by Setup.exe to copy installation
| files from the source to a local installation source on the user's
computer.
| Often used during an Office 2003 installation.
| --
| Hope this helps. Let us know.
| Wes
|
| In news:(E-Mail Removed),
| Diggy <(E-Mail Removed)> hunted and pecked:
| > Hey Phonedaddy! Glad to see this post! On my comp also, Pest Patrol
found
| > two reg entries in the Trusted Certificate key, and the entries were
said to
| > be from Claria, which raised a red flag. However, I have not seen any
| > strange behavior. I also have Zone Alarm, and have not seen any unusual
| > outgoing activity, except OSE.EXE (this may or may not be related to the
| > Claria reg entries).
| >
| > Here are the reg entries:
| > Pest Detected in
| >
HKEY_CURRENT_USER\software\microsoft\systemcertificates\trustedpublisher\crl
| > s
| > Pest: Claria
| > User Action: registry entry ignored, NOT Quarantined
| >
| >
| > Pest Detected in
| >
HKEY_CURRENT_USER\software\microsoft\systemcertificates\trustedpublisher\ctl
| > s
| > Pest: Claria
| > User Action: registry entry ignored, NOT Quarantined
| >
| >
| > So what's the deal with this stuff? Is it a mistake by PP? And do
these
| > reg entries mean that there are, in fact, certificates from Claria on my
| > computer? If so, how the heck can you remove them? (I tried looking at
the
| > list of certificates viewable from IE, but I can't see any with the name
| > Claria or Gator. Most of the certificates there have names that mean
| > nothing to me.)
| >
| > --
| > ICQ#
| > "phonedaddy" <(E-Mail Removed)> wrote in message
| > news:BFE35283-2AE5-40EC-96B3-(E-Mail Removed)...
| > > I have an issue concerning registry settings for trusted certificates
in
| > my XP Home Edition PC. My spyware/malware utility Pest Patrol reports
that
| > Claria Corporation has installed a trusted certififcate in my registry.
Pest
| > Patrol is able to temporarily remove this annoyance, however it seems to
| > reinstall itself after a few browses on the internet. SpyBot S and D,
| > AdAware 6.0 and Mcafee VirusScan do not report this adware annoyance
since
| > it is registered in the PC as a trusted certificate. When the adware is
| > active it affects the browser web pages with a 404 Server cannot be
found
| > error or a page that doesnt load properly, incomplete or not at all. I
also
| > get an error message stating that my system clock setting is incorrect
and
| > needs to changed when trying to login from MSN Explorer. I try
synchronizing
| > the clock and that doesnt help. When I clean the Claria adware with Pest
| > Patrol everything works fine again until the adware updates or
reinstalls
| > itself. I am not able to view this trusted certificate in IE 6, however
I
| > have noticed some suspicious registry settings that have meaningless
symbols
| > under the HKEY_CURRENT_USER/SOFTWARE/MICROSOFT/SYSTEM CERTIFICATES. How
can
| > I refresh the system certificates without getting this adware
certificate
| > back in? I am not comfortable with editing this part of the registry
and
| > also not comfortable with an adware companie's certificate in my PC.
Please
| > advise. Thanks.

"phonedaddy" <(E-Mail Removed)> wrote in message
news:BFE35283-2AE5-40EC-96B3-(E-Mail Removed)...
> I have an issue concerning registry settings for trusted certificates in
my XP Home Edition PC. My
> spyware/malware utility Pest Patrol reports that Claria Corporation has
installed a trusted certififcate in my
> registry. Pest Patrol is able to temporarily remove this annoyance,
however it seems to reinstall itself after a > few browses on the internet.
SpyBot S and D, AdAware 6.0 and Mcafee VirusScan do not

Regardless of the fact that you say it DOESNT remove it, as you are actually
talking about GATOR, I have to tell you that Spybot DOES remove it. You may
NOT, however, actually have the latest Spybot so I suggest you try updating
it to get the latest. Mcafee really isnt that far in to looking at Spyware
right now so there is no doubt that their programs wouldnt pick it up.