I am not clear if you already had Norton installed when you started to get this problem or if you got a problem and then installed Norton.

You also do not say which Norton product you have or had.

 

You may have a routekit infection but nodoubt others will advise if this is the case and the software you need to download and run. Meanwhile, you have an awful lot of entries in your Hijack and many are not essential. I would advise temporary disabling ALCMTR.EXE.

I recommend Autoruns from Microsoft for this exercise as it actually moves entries rather than delete them so it is possible to recover easily. However, I Alcmtr is not your issue.

Disabling ALCMTR.EXE, will prevent it from reporting back to Realtek, but don't delete the file.  It is tied into the updating of Realtek audio drivers.

 

Can you clear your browser caches and temp files?

 

Can you open task manager, msconfig, or regedit?

 

Did you have Norton on a disc or a download.

Hi CoCoRosie, I dont see anything overtly malicious in your HJT log. Since the MBAM scan found nothing but you are still having problems, I would advise you to run a scan with Dr.Web CureIt. Most people haven't heard of it but I can assure you it is a legitimate antimalware app. It often finds things that MBAM and SAS miss, and can even break some rootkits. You dont even need to install it, just download it to your desktop and run it, as long as you get it from the Dr.Web website it is always up to date. By default it runs a quick scan first but after that completes you can run a full scan. You can read more and download it here

Hi CoCo

 

Was the scan you did with Malwarebytes updated before you did the scan? I ask that because I see you used an older version of HiJackThis. Are you able to get to sites like Malwarebytes or even the Symantec site without getting redirected?

 You are also using a very old Java. Java and Adobe products need to be kept up to date because they are always getting updated for security reasons.

I downloaded both HiJackThis and Malwarebytes directly from their website yesterday, and yup, MalwareBytes checked for updates.

I used another computer to download, and copied over via a thumbdrive.

If you'd like, I can update and check again. I was also thinking about trying to install NIS again. I don't know why; I guess doing something is better than sitting here and doing nothing.

Help!

Hi CoCo

 

It is better to download these programs from different websites than the original ones because the malware writers know that people will try and use these sites to get the programs and often block them from the infected computers.

 

Please download HiJackThis from http://free.antivirus.com/hijackthis/ Choose the executable and save it on your desktop. Run the file and select the first option on the main menu "Do a system scan and save a log file". When this is finished, Notepad will open with the log file in it. Save the log file and attach it to a post here via the Add Attachments under the orange Post button Please don't attempt to fix anything that it shows until someone checks out the log. Thanks. It should be version 2.0.2

 

Download the free version, install and update then run a FULL scan. After the scan completes you should post the logs back to this thread.

You can find Malwarebytes here

http://www.filehippo.com/download_malwarebytes_anti_malware/

It is a safer location to get the program from than malwarebytes themselves because the malware writers some times block the security programs' websites.

If you have installed NAV and then installed NIS over top of it, you have caused yourself some major problems.  You can boot from the NIS disc and run a scan, but you may need to run the Norton Removal Tool first to clear off the double installation before it can work properly.  You will need your activation key from the disc.

 

NRT