Last night, by chance I decided to go into my registry and check my HKCU\Software\Microsoft\Windows\CurrentVersion\Run entries
and came across
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Bandook <system>\ali.exe
HKLM\Software\MicrosoftWindows\CurrentVersion\RunOnce
*Bandook <system>\ali.exe
HKLM\SOFTWARE\Microsoft\Active Setup\Installed components\(B6A807N6-42DF-4W02-93E5-B156B3FA8AL1)
StubPath
<System>\ali.exe
I checked online and discovered it was a trojan, what it did and disconnected immediatley
After booting into safe mode and running Norton Internet security it turned up nothing. So I deleted all the above registry entries(still in safe mode) as well as the prefetch file and ALI.EXE file.
After rebooting into normal mode and scanning of the registry I didn't find anymore entries or ALI.exe files.
I then went back online and downloaded new version EWIDO AVG and scanned in safe mode which also turned up nothing.
So to the point finally (sorry), did I get rid of the trojan or just make things worse for myself?
Thanks in advance for the help