Did 1-6, please help

Welcome to MGs.

If by the words "adware", "tracking", and bugs you are referring to cookies, there is really no problem. Cookies are normal and in many case can be very useful. The only real way to totally avoid cookies is not to surf. You could also take the approach to block all cookies but you will find that approach not very useful since you will have problems accessing many websites.

Let's see if you have anything to be concerned about. Continue with step 7 of the READ & RUN ME and attach a HijackThis log.

The below items were in your Panda log and we should delete them at a point, but let's see the HJT log first.

C:\WINDOWS\system32\per.exe
C:\WINDOWS\SYSTEM32\t.exe
C:\Documents and Settings\lawstudent\.jpi_cache\jar\1.0\java.jar-8fba448-1d67b4be.zip[Installer.class]

 

Is your copy of Spyware Doctor a purchased version? I would need to know exactly what it is finding before I could help you with that. If it was finding the stuff I will have you fix below, you should ask them why they could not fix what they detected (that is only if you bought it).

You have some remnants of a form of about:blank hijacker. You should run the below tool twice and attach the log later when you come back.
about:Buster

For all OS types, make sure viewing of hidden files is enabled (per the tutorial).

Please run HijackThis and click on the "Open the Misc Tools Section" button on the open page. Then select "Open process manager" on the left-hand side. Look for the following process (or processes) and one at a time kill them by selecting it and then click "Kill process". Then click yes.
C:\WINDOWS\system32\per.exe

After killing all the above processes, click "Back".
Then please click "Scan" and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\DOCUME~1\LAWSTU~1\LOCALS~1\Temp\se.dll/space.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
O4 - HKLM\..\Run: [ControlPanel] C:\WINDOWS\system32\per.exe internat.dll,LoadKeyboardProfile
O18 - Filter: text/html - (no CLSID) - (no file)
O18 - Filter: text/plain - (no CLSID) - (no file)
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\

After clicking Fix, exit HJT.
Boot into safe mode and use Windows Explorer to delete:
C:\Documents and Setting\lawstudent\Local Settings\Temp\se.dll <--- empty the whole Temp folder
C:\WINDOWS\system32\per.exe

If you get an error when deleting a file. Right click on the file and check to see if the read only attribute is checked. If it is, uncheck it and try again. Other wise open Task Manager and kill the process if running then delete the file.

Now if running Win XP goto c:\windows\Prefetch and delete all files in this folder.
Now run Ccleaner (installed while running the READ ME FIRST).

Now we need to Reset Web Settings:
1) If you have an Internet Explorer icon on your Desktop, goto step 2. If not, skip to step 3.
2) Now right click on your desktop Internet Explorer icon and select Properties. Then click the Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK. Then skip step 3.
3) If you do not have an Internet Explorer icon on your Desktop, click Start, Control Panel (for some systems it may be Start, Settings, Control Panel), Internet Options, Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK.

Now reboot in normal mode and post a new HJT log. And tell us how things are working.

Reminder Note: Once we have determine you are malware free you will need to disable System Restore, reboot, and re-enable system restore per step 1 of the READ & RUN ME. This only applies to if using WinXP or WinMe.

 

Yes you look clean now. You forgot to answer my question about Spyware Doctor. Is it a paid version that you keep updated?

 

Advertising cookies are mostly harmless. So are MRUs. Too many programs spend too much time pointing out cookies and MRUs and do not do an effective job fixing the real problems like you had. (The per.exe file and the about:blank hijacker.)

Don't waste your time worrying about cookies! You are going to get them as soon as you do ANY surfing (i.e. just opening your browser will load a page).

Now since you use a paid version of SpywareDoctor, I would uninstall MS Antispyware. Using two full blown antispyware detector/scanner/blocking programs like these two can slow your system time and cause conflicts.

If you are not having any other malware problems, it is time to go back to step 1 of the READ & RUN ME to Disable System Restore which will flush your Restore Points. Then reboot and enable System Restore to create a new clean Restore Point.

After that, you should work thru the below link:

How to Protect yourself from malware!

 

You're welcome. Surf safely!