Hi

 

1. Did Norton not remove these for you after detection??

2. Download Hijackthis http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download and download the third in the list (Excutable) and click "Scan with log"  open the log in Notepad, the paste me the results please in a Personal Message.  being as you have more than one infection there should be a few entries. Will try and spot the startup entries to fix to give the PC more resouces. 

3. Download Malwarebytes from http://www.malwarebytes.org/mbam.php, update and do a full scan.

 

We will see how we go, as for the other 2 infections, depends on the slight variant. We will get there step by step. 

 

Quads 

Quads, thank you for your help.  I will do as you instruct and let you know what happens.  Thanks again.

Quads, I'm new in the forum and don't know how to send you a personal  message.  I have the scan results to sedn to you; just don't know how to do it in a personal message.  How do i do that?

---

RickRojas wrote:
Quads, I'm new in the forum and don't know how to send you a personal  message.  I have the scan results to sedn to you; just don't know how to do it in a personal message.  How do i do that?

---

 

Find a post from him.  Click on his name.  This will take you to his info screen.  Then find on the right the option to send a personal message.  Click on that.

Hi

 

I have sent you a Personal Message (PM) the letter icon along the right hand side will have now change to yellow saying "x new message"

 

Quads 

Quads, I'm sorry for my ignorance, but what do you mean by "tick these entries".  I'm not really computer savvy, and don't undestand some of the jargon.  Again, I apologize for my ignorance.

 

Here is the malawarebites log:

 

Malwarebytes' Anti-Malware 1.30
Database version: 1441
Windows 5.1.2600 Service Pack 3

12/1/2008 10:30:34 AM
mbam-log-2008-12-01 (10-30-34).txt

Scan type: Full Scan (C:\|)
Objects scanned: 170308
Time elapsed: 1 hour(s), 12 minute(s), 32 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 6

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Rapid Antivirus (Rogue.RapidAntivirus) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Program Files\mozilla.org\Mozilla\regxpcom.exe (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{129201FA-B0AC-49B3-96B2-DEB8B91E727B}\RP1055\A0112021.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\Downloaded Program Files\atmgr.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbldrv.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbxdrv.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Documents and Settings\Rick\gotomypc_428.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Ok

 

When I say tick the entries I listed, see in this screenshot how I have ticked one

 

 

 

Then you click the "Fix Checked" button.   The PC may have to be restarted after.

 

How old is your AV Program??

 

Please note only tick the entries I stated in message 7 above 

 

Quads 

All Clean??

 

Quads