Spyware/virus Won't Come Off!

Hey there,
Not sure who will be able to help me. This past Friday I was surfing the net and all of a sudden some kind of spyware/virus/trojan was downloaded onto my computer. Windows security and firewall did not stop it, neither did Norton Antivirus. For the past four days I have been trying to get rid of it. At one point it seemed as if everything was fine. But as soon as I connected to the internet it started again. Norton would automatically say, Trojan Horse on you computer, unable to protect and unable to access file. It seems as if it spreads really fast too, that pops up many times showing many different files. I noticed new files in my start up and I went and disabled them. I keep on going to a webpage that says about:blank. But it is a Quick Web search webpage. I have done everything from running, Norton Antivirus several times, Ad-Aware, The Cleaner, and the beta version of Microsofts Antispyware. I have done this several times with system restore off a couple of times and in safe mode. I found this website and it seems like hijackthis is the answer to most problems. The only thing is that I don't think I know what files to delete. There are a few I have no idea about. Below is my hijackthis log. Please, if anyone can please guide me as to what I should delete and or how to get rid of this spyware/virus/trojan!

Edit by chaslang: Unrequested inline log removed

 

1. hjt logs are to be posted as an attachment, and when asked, see the sticky . Also, you will want to go through the steps in this sticky first, then if the problem remains, post again.

 

Hey Oldman,
I appreciate that. I did what that said, and so far so good! It took me over four days! It would probably be good to have a section for NEWBIES. Anyway thanks a lot.

 

Please follow forum guidelines!

HJT is not the first step in removing malware.


Please EXTRACT HijackThis from the ZIP File to a Safer location. Here's how:

To create a new folder:
Click START > My Computer > Local Disc C: > Program Files
Now, RightClick on an Empty Area and select New > Folder & name it HijackThis and ENTER

To Extract HijackThis:
Now, Right Click your HijackThis ZIP File and select Extract All > Next > and browse to your newly created HijackThis Folder
(C:\Program Files\HJT) and click Next.

The reason HJT needs its own safe folder is so that backups will be safely preserved. That way, if a mistake is made in the removal process, the mistakenly deleted entry can be restored.

After relocating HJT please procede with these online scans:

TrendMicro Online Scan
Bitdefender online scan
RavAntivirus online scan <-- select Auto Clean then click Scan My PC
TrojanScan online scan

After doing these online scans procede to the next step:


http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

1. Attach the log from Normal Mode
2. Close ALL browsers!