Quote Originally Posted by spaileen View Post
I've attached the logs for AVG Anti Spyware and Autorun. I do not see an option to save Rootkit txt file. However Rootkit found only1 hidden file ....
c:\windows\system32\kdtco.exe. When I went to delete it I got a warning that it could be dangerous deleting this file and it could be a boot file. I did not delete it. I hope this information is of help.
I don't care much about the tracking cookies, they are fine but the rootkit you mentioned had absolutely no hits on Google search, that in my book, is an automatic red flag. I would get rid of it, everything legit and critical to OS would have some hits on Google! Get rid of it pronto.

Ok, all I could see on your Autoruns log was a few invalid, unnecessary entries but nothing came out malicious per se. Here are the invalid entries you could disable or even delete:
HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components
+ 0 File not found: about:Home
HKLM\Software\Microsoft\Windows\CurrentVersion\She ll Extensions\Approved
+ Display Panning CPL Extension File not found: deskpan.dll

I couldn't se any malicious entries at all, very strange. Home page or Search page redirection should be taking place either in the Host file or registry but none of the programs were able to spot anything.

Open your Hosts file and make sure it is good. If you are certain if you could tell Hosts file being modified or looking different than default, download and use Hoster!

This is all I can see and say for now, could you download and run HijackThis scanner and attach its log file as a .txt attachment to your next post please.