I have done all the preparation as advised in this forum, not sure if clean,
attached is a copy of HJT and Combofix logs, original HJT log available if needed
original message before topic got moved, "sorry for posting in wrong forum"
I have my friend's pc that im trying to fix, he said that he opened an attachement and all hell brok loos.
I got the pc, first i cant see the desktop or icon, i managed to find the explorer.exe hidden in the localmachinesoftwarewindowswinsdowsNTimage file excution options, i delete it and got the desktop and icons to show.
I started hijack this to do a scan and got norton saying; aec.sys, ALCXSENS.SYS, asyncmac.sys ins system 32 infected by Hacktool.rootkit and was automaticly deleted.
In the quarantine i see those and many others including:
(random.tmp files); W32.netsky.Da@mm!enc
figaro.sys ; Trojan.Virantix.C in dllcache
and strangely wuauclt.exe as trojan horse, i know its windows update, dont know why norton quarantined it.
bravisax and many other stuff going on, which confuse me more on the correct procedure to follow to clean this thing so here is the hijack this log, I hope someone can steer me in the right course of action.