Symantic doesn't update / run , downloads prohibited

I've had some problems that I was hoping this thread could help me resolve.
Problems:
1) Symantic runs for 0.0 second for a quick scan or full scan
2) Microsoft firewall keeps getting set to warn even though Symantic is installed and this never happened before. The following registery item keeps getting set between logons.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
3) Computer is running painfully slow and should not be.
4) Had noticed issues with IE ( although usually use firefox 5.0). IE would auto load to a page called qword.com? It was set in several registry records. Deleting did not improve.

I don't recall installing anything out of the ordinary recently. I didn't go looking for anything suspect in nature either. I've run the malware diagnostics / repairs recommended. It seems to clear up some things but they always appear to return.

Of interesting note: during the combo run, I got this error rmbr.3XE has encountered a problem and needs to close. We are sorry for the inconvenience. Also, you will see 2 mbam logs attached, one is for after the machine was cleaned and the other is what happens after each reboot. Thanks for your time.

 

Follow up post with MGlogs.zip and SAS

 

Hi datam0ver,

Run a Complete scan via SAS This was part of the READ and RUN ME instructions. Then attach its log afterwards.

Most of your problems appear to be software related as I'm not finding any obvious signs of malware in your logs. You have a lot of programs running. Are you using all of these? You may want to consider uninstalling some of the unused applications from Add/Remove Programs and see if that helps at all

ComboFix may also have given you some trouble running due to Symantec AV/Firewall both being enabled. They should be disabled before running ComboFix.

Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

Run C:\MGtools\analyse.exe by double-clicking it (Vista and Win7 right-click and select Run as Administrator)
Note: This is actually Trend Micro HiJackThis - v2.0.4
Choose Do a system scan only and select the following lines but do not click fix until you exit all explorer windows and all browser sessions including the one you are reading in right now:

After clicking Fix, exit out of Trend Micro HiJackThis - v2.0.4

Now download JavaRA by RaProducts to your desktop.
See the download links under this icon: http://forums.majorgeeks.com/chaslang/images/MGDownloadLoc.gif

• Extract the contents of JavaRa.zip into a folder on your desktop entitled "javara".
• Double-click JavaRa.exe to run
• Choose your language and press Select
• Click the Remove Older Versions button
• When asked Do you want to proceed? click Yes
• Follow the rest of the prompts
• A log file will open at the end. Go ahead and close this.

Now download GooredFix by jpshortstuff to your desktop.
See the download links under this icon: http://forums.majorgeeks.com/chaslang/images/MGDownloadLoc.gif

• Ensure all Firefox windows are closed.
• To run the tool, double-click it (XP), or right-click and select Run As Administrator (Vista/Win 7).
• When prompted to run the scan, click Yes.
• GooredFix will check for infections, and then a log will appear.
• Please attach the Goored.txt log to your next reply (it can be found on your desktop). (How to attach items to your post)

Are these all folders that you are aware of on your desktop?

Here is a registry fix to remove the Qword registry entry you mentioned:
Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Make sure that you tell me if you receive a success message about adding the above
to the registry. If you do not get a success message, it definitely did not work.

Is this a batch file you made? c:\windows\issiunin.bat

If you are unsure of what it is, do not run it. Go to VirusTotal.com and upload it for analysis. Let me know the results!

Now install the current version of Sun Java from: Sun Java Runtime Environment

Now run C:\MGtools\GetLogs.bat by double-clicking it (Vista and Win7 right-click and select Run as Administrator)
Then attach C:\MGlogs.zip to your next message. (How to attach items to your post)
Notes:

• This will automatically update all the logs inside MGlogs.zip
• Make sure you click Accept on the License Agreement from Trend Micro HiJackThis - v2.0.4 twice if prompted.

LET ME KNOW HOW THE PC IS RUNNING AFTER YOU HAVE COMPLETED THESE STEPS​