<snip> do i need to re-run my scans now?Yes.
As for the one program you told me to download does it give me an option not to run the registry cleaner or download it and wait to run the entire thing until essexboy has looked at it?You can download it and use the "Cleaner" button; don't use the "Registry" button until Essexboy works with you. But if you are finding that you having a hard time downloading and installing things while you are having this malware problem, wait until Essexboy works with you.
@ Nariamathstes,
Please start a New Topic of your own as this will just confuse the current thread and we will help you there.
<snip>
It possible if i go back through my paperwork there was a trial of norton or something that came with the netbook that i never activated, not a fan of norton...Here is the trace in yr OTL log --
One or more of the identified infections is a backdoor Trojan and a key logger.
If this computer is ever used for on-line banking, I suggest you do the following immediately:
1. Call all of your banks, credit card companies, financial institutions and inform them that you may be a victim of identity theft and to put a watch on your accounts or change all your account numbers.
2. From a clean computer, change ALL your on-line passwords for email, for banks, financial accounts, PayPal, eBay, on-line companies, any on-line forums or groups you belong to.
Do NOT change passwords or do any transactions while using the infected computer because the attacker will get the new passwords and transaction information.
:OTL
SRV - File not found [Auto | Stopped] -- C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe -- (Norton Internet Security)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.SYS -- (NAVEX15)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.SYS -- (NAVENG)
O4 - HKLM..\Run: [Psurogaje] C:\WINDOWS\eqesabam.DLL File not found
O4 - HKCU..\Run: [Predujehoko] C:\WINDOWS\otalibc.DLL File not found
[2010/07/28 23:02:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\gntjpgixe
[2010/07/23 21:26:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ansara\Local Settings\Application Data\xbfgeluhk
[2010/07/25 14:25:46 | 000,000,120 | ---- | M] () -- C:\WINDOWS\Eferewohi.dat
[2010/07/25 12:07:24 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Gkijozececisuwa.bin
:Commands
[purity]
[resethosts]
[emptytemp]
[EMPTYFLASH]
[CREATERESTOREPOINT]
[Reboot]
1. You should run Norton /Symantec uninstaller tool(s) just so avast has a bit more freedom to perform to its best without false positives
To sort these out, go to this page http://uninstallers.blogspot.com and download both Norton / Symantec uninstaller tools.
Folder::
c:\documents and settings\NetworkService\Local Settings\Application Data\glnsdsayh
:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[Reboot]