System Restore

[PrenticeBoyofDerry]

OK a quick look and so far I count:

Norton
AVG
MSE
SAS
MBAM
Rappot, and
Comodo

I recently downloaded AVG on a free trial hopefully to sovle my problem, norton was an old security that I have not uses for a while at least 2 years could be longer, thought I had unistalled it!

couple of questions,

Have your bank told you you need rapport?

Yes. Well it was recommended as a security download, when visited online accounts.

Have you at any point been using network sniffing tools?

don't have a clue, don't know what one is nor does.

 

[daozen]

Ok thats fine we'll come back to that first I need you to:

Open malwarebytes and goto UPDATE and click 'check for updates'.
After its updated goto SCANNER
Click PERFORM FULL SCAN
Click SCAN
Remove everything that's found (needs to be ticked)
Post the complete log here once you've deleted everything it finds (it should pop up at the end) this might take a while to do.

I'm going to make some security suggestions so we can sort out your system. AVG is rubbish as is norton so I would advise getting rid of those in favour of Avast. Don't do anything yet I'll talk you through it but I need your say so as its your computer.

 

[chainsaw_masochist]

Hi PBOD

There seems to be a certain section of the community who opine Rapport is an utter crock of cr@p. Check these threads out:
Money Savings Expert and Computing.net

Good luck with getting the probs resolved.

 

[PrenticeBoyofDerry]

daozen, it's all greek to me but I will leave it in your capable hands.

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4052

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18372

24/02/2011 15:48:37
mbam-log-2011-02-24 (15-48-37).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|K:\|)
Objects scanned: 323459
Time elapsed: 2 hour(s), 12 minute(s), 30 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 7
Files Infected: 226

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Program Files\Reg-Tool (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\PW (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Logs (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Results (Rogue.RegTool) -> Quarantined and deleted successfully.

Files Infected:
C:\Program Files\Reg-Tool\definitions.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\privacy.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\PW.zip (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\Reg-Tool.url (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\startup.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\PW\general.html (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\PW\optimizations.html (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\PW\privacy.html (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\PW\scheduler.html (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\PW\startup.html (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\Reg-Tool\PW\wizard.css (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\spy_ignore.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Logs\2010-02-28 22-25-260.log (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Logs\2010-02-28 22-46-300.log (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Logs\2010-02-28 23-23-120.log (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Logs\2010-02-28 23-23-121.log (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Logs\2010-03-01 09-11-570.log (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\filelist.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-0.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-1.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-10.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-100.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-101.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-102.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-103.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-104.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-105.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-106.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-107.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-108.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-109.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-11.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-110.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-111.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-112.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-113.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-114.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-115.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-116.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-117.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-118.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-119.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-12.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-120.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-121.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-122.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-123.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-124.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-125.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-126.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-127.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-128.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-129.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-13.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-130.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-131.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-132.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-133.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-134.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-135.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-136.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-137.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-138.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-139.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-14.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-140.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-141.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-142.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-143.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-144.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-145.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-146.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-147.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-148.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-149.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-15.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-150.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-151.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-152.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-153.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-154.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-155.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-156.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-157.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-158.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-159.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-16.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-160.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-161.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-162.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-163.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-164.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-165.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-166.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-167.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-168.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-169.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-17.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-170.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-171.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-172.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-173.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-174.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-175.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-176.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-177.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-178.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-179.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-18.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-180.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-181.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-182.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-183.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-184.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-185.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-186.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-187.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-188.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-189.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-19.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-190.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-191.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-192.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-193.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-194.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-195.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-196.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-197.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-198.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-199.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-2.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-20.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-200.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-201.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-202.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-203.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-21.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-22.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-23.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-24.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-25.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-26.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-27.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-28.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-29.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-3.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-30.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-31.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-32.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-33.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-34.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-35.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-36.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-37.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-38.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-39.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-4.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-40.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-41.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-42.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-43.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-44.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-45.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-46.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-47.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-48.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-49.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-5.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-50.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-51.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-52.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-53.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-54.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-55.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-56.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-57.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-58.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-59.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-6.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-60.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-61.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-62.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-63.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-64.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-65.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-66.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-67.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-68.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-69.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-7.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-70.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-71.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-72.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-73.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-74.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-75.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-76.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-77.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-78.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-79.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-8.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-80.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-81.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-82.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-83.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-84.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-85.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-86.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-87.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-88.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-89.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-9.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-90.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-91.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-92.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-93.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-94.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-95.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-96.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-97.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-98.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\QuarantineW\2010-03-01 00-26-060\regb-99.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Results\Evidence.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Results\Junk.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Results\Registry.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Owner\Application Data\Reg-Tool\Results\Update.db (Rogue.RegTool) -> Quarantined and deleted successfully.

 

[daozen]

OK Malwarebytes found and deleted a rogue security program.

We're not done yet I need you to go to this website: http://download.cnet.com/Avast-Free...0019223.html?part=dl-85737&subj=dl&tag=button and download the avast installer to your desktop. Leave it there for now don't do anything with it.

Now download to your desktop the AVG removal tool either the 32bit version or 64bit depending on which one you are : http://www.avg.com/us-en/download-tools and the Norton Removal Tool which corresponds with the version of Norton you had installed: http://us.norton.com/support/kb/web_view.jsp?wv_type=public_web&docurl=20080710133834EN&ln=en_US

Next disconnect from the internet and navigate to the Control Panel then ADD/REMOVE PROGRAMS. I need you to uninstall the following:

Registry Booster
AOL Dialer
AOL Spyware Protection
Microsoft Security Essentials
AVG
Norton (anything connected to norton if its there)

Once they are uninstalled run the AVG removal tool and the Norton Removal Tool. Once you've done that run the avast installer. Once done re-run HJT and post the log.

You may have to restart the computer though out this. If you have any questions just ask.

 

[PrenticeBoyofDerry]

daozen
I have followed you above instructions apart from deleting AOL Dialer could not find the program to delete it
But everything else I have manged. Heres the hijackthis logfile

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:58:21, on 25/02/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18372)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Virgin Broadband Wireless\AffinegyService.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\AGRSMMSG.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\Program Files\Common Files\AOL\1217770117\ee\aolsoftware.exe
C:\Program Files\Lexmark 6300 Series\ezprint.exe
C:\Program Files\Virgin Broadband Wireless\Wireless Manager.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Fitbug Limited\Bug Manager\BugManager.exe
C:\PROGRA~1\HELPAN~1\HPQ\XPXWWPP5\plugin\bin\PCHButton.exe
C:\Program Files\AOL 9.0\aoltray.exe
C:\Program Files\blueyonder IST\bin\mpbtn.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1;*.local
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [Workflow] F:\Workflow.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [lxcdmon.exe] "C:\Program Files\Lexmark 6300 Series\lxcdmon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 6300 Series\ezprint.exe"
O4 - HKLM\..\Run: [Wireless Manager] "C:\Program Files\Virgin Broadband Wireless\Wireless Manager.exe" startup
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1217770117\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [AOLToolbarDirRemoval] cmd.exe /C rd "C:\Program Files\AOL Toolbar"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Bug Manager] C:\Program Files\Fitbug Limited\Bug Manager\BugManager.exe
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\HPQ\XPXWWPP5\plugin\bin\PCHButton.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3247370136-2408930749-2921780190-1008\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User 'SANDRA')
O4 - HKUS\S-1-5-21-3247370136-2408930749-2921780190-1008\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -update plugin (User 'SANDRA')
O4 - Global Startup: AOL 9.0 Tray Icon.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: blueyonder Instant Support Tool.lnk = C:\Program Files\blueyonder IST\bin\matcli.exe
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/Bejeweled%202/Images/stg_drm.ocx
O16 - DPF: {245338C3-BCA3-4A2C-A7B7-53345999A8E8} (WSpell ActiveX Spelling Checker V5.15) - http://students6.autodesk.com/editor/tinymce/spellchecker/wspellam.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AffinegyService - Affinegy LLC - C:\Program Files\Virgin Broadband Wireless\AffinegyService.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Express Accounts (ExpressAccountsService) - Unknown owner - C:\Program Files\NCH Software\ExpressAccounts\expressaccounts.exe
O23 - Service: Express Invoice (ExpressInvoiceService) - Unknown owner - C:\Program Files\NCH Software\ExpressInvoice\expressinvoice.exe
O23 - Service: Google Update Service (gupdate1c9eeb8407de85a) (gupdate1c9eeb8407de85a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Inventoria Stock Manager (InventoriaService) - Unknown owner - C:\Program Files\NCH Software\Inventoria\inventoria.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe (file missing)
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 12064 bytes

 

[daozen]

Ok a couple of questions before we start.

Who is your broadband supllier AOL or Virgin Media?
Did your bank tell you to use Rapport or did it just flash up on your banks website when you logged on once?

I need you to go to the control panel and uninstall

AOL Toolbar
Anything called Symantec
WinPcap

Let me know if you have any questions/problems.

 

[PrenticeBoyofDerry]

Virgin Media

Rapport
a window messege recommending this appeared proir to me login on to my account, I was not told be anyone to use it, but as it was my offical online banking website thought it was best to do so.

Can't find winpcap
and already deleted AOL toolbar but have other AOL application
Coach Version 1.0
You've got pictures Screensaver and
Uninstaller

 

[daozen]

Ok this is going to be up to you but Rapport seriously slows your computer down and can sometimes knacker the internet. Besides anything else its not very good at its job (once flagging itself up and a security risk on my GF's computer). I would recommend removing it unless your bank has told you to use it (which they do in some cases after a compromised account I think as a way of laying the blame at the customers doorstep), but as I say its upto you. Once your clear I can recommend better ways of banking securely.

Can you confirm what you uninstalled.

Thanks.

 

[PrenticeBoyofDerry]

Can't find winpcap
and already deleted AOL toolbar but have other AOL application
Coach Version 1.0
You've got pictures Screensaver and
Uninstaller

Have uninstalled
Registry Booster
AOL Toolbar
AOL Spyware Protection
Microsoft Security Essentials
AVG
Norton stuff
Symantec Live update (I think it was called that)

but not
AOL Dialer or
WinPcap as I can't find anything

 

[daozen]

Redo the HTJ scan and put a tick in the box next to these entries and click FIX.

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1;*.local
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Workflow] F:\Workflow.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [lxcdmon.exe] "C:\Program Files\Lexmark 6300 Series\lxcdmon.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1217770117\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKLM\..\RunOnce: [AOLToolbarDirRemoval] cmd.exe /C rd "C:\Program Files\AOL Toolbar"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_ActiveX.exe -update activex
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\HPQ\XPXWWPP5\plugin\bin\PCHButton.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3247370136-2408930749-2921780190-1008\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User 'SANDRA')
O4 - HKUS\S-1-5-21-3247370136-2408930749-2921780190-1008\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -update plugin (User 'SANDRA')
O4 - Global Startup: AOL 9.0 Tray Icon.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/Bejeweled%202/Images/stg_drm.ocx
O16 - DPF: {245338C3-BCA3-4A2C-A7B7-53345999A8E8} (WSpell ActiveX Spelling Checker V5.15) - http://students6.autodesk.com/editor/tinymce/spellchecker/wspellam.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe (file missing)

Consider disabling as well as the above if they aren't needed:

O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe (HP software which helps one create labels after a music CD is burned using LightScribe discs.)
O4 - HKLM\..\Run: [Wireless Manager] "C:\Program Files\Virgin Broadband Wireless\Wireless Manager.exe" startup (From Virgin but can cause conflicts, if you have problems locate it with the path provided and restart it)
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon (Canon printer, but can be started when needed)
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon (Canon printer, but can be started when needed)
O4 - HKCU\..\Run: [Bug Manager] C:\Program Files\Fitbug Limited\Bug Manager\BugManager.exe (Unless "Sandra" needs her weight/fitness software running at boot there remove as can be started when she needs it)
O4 - Global Startup: blueyonder Instant Support Tool.lnk = C:\Program Files\blueyonder IST\bin\matcli.exe ("matcli.exe is a motive Assistant Command line interface that gathers information about your system's identity like your name email address, city, state, etc and gets written to a log file". Blueyonder Instant Support is required to run with the Help and Support program. If you uncheck it and and then run Help and Support it will add another Blueyonder Instant Support in the startup menu. If you remove Blueyonder Instant Support in add/remove programs some help menus in help and support will not be available. You decide)
O23 - Service: Express Accounts (ExpressAccountsService) - Unknown owner - C:\Program Files\NCH Software\ExpressAccounts\expressaccounts.exe (Unless you need this running disable)
O23 - Service: Express Invoice (ExpressInvoiceService) - Unknown owner - C:\Program Files\NCH Software\ExpressInvoice\expressinvoice.exe (Unless you need this running disable)

Unininstall anything to do with AOL, I assume also theres nothing in the control panel to do with Symantic? Next go to Program Files and delete following directories:

WinPcap
AOL Toolbar
AOL 9.0
Symantec

Let me know how this goes and post a new HJT log when you've done.

Cheers.

 

[Monkeh]

Redo the HTJ scan and put a tick in the box next to these entries and click FIX.

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1;*.local

What purpose does removing that serve? It could actually cause problems..

 

[daozen]

I doubt it. I'll be taking PBOD through replacing the Hosts file after this is done due to the System Tool and Reg-Tool infection, so atm its a moot point.

 

[Monkeh]

I doubt it. I'll be taking PBOD through replacing the Hosts file after this is done due to the System Tool and Reg-Tool infection, so atm its a moot point.

It's a fairly specific use case it would cause issues in, however I see no benefit to removing a default setting. I also don't see what the hosts file has to do with it.

 

[daozen]

Maybe you should do some research into the System Tool malware then. However if you wish to complete this then be my guest.