TheSearchMall-How do I remove it??

I know you all have helped others with TheSearchMall hijacker so hope you can help me. Background: I have just run AdAware SE with VX2 Plug-in, Spybot S&D with DSO Exploit Fix, SpyBlaster (after infected), and HSRemove (after infected). No help. I have always run Spybot S&D and AdAware SE weekly, and have McAfee VirusScan running with automatic updates, and ZoneAlarm Pro firewall. I just ran HiJackThis today (in safe mode...is this OK?) and following is the log. Hopefully you can review it and tell me what I need to remove, and anything else I should do to clean up my computer. I am not knowledgeable enough to touch my registry or any other of the operating Windows files/systems without help. Thanks!

Logfile of HijackThis v1.99.0
Scan saved at 11:35:07 AM, on 1/24/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Edit by chaslang: Unrequested inline log deleted.

 

have you already gone through this sticky if not please do so. . .
READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal:
if you have double check everything and make sure you did do everything
and all software is up to date

if proven unsucessful run through this before attaching a log
NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting:
*Note that your HijackThis should be up-to-date (v1.99) and MUST be extracted to its own safe folder - C:\Program Files\HijackThis! Please do this!!!*

you also need to make sure you close all running apps and close all windows(including this one) before running a HJT scan( all information is in the above links)

 

Thanks chaslang.
My first time on this site and was trying to give as much info in one post as I thought someone needed to help me. Will learn the rules. Thanks for the tips in running HJT, too.

 

Yes, have finally been able to work through all the steps in READ ME FIRST from jarcher, and have uninstalled WeatherBug. Here are steps and results from Read Me instruction:

1) Disabled Sys Restore
2) Skipped 2....no about:blank or home search hijack;
3) done.
4) Downloaded 10 tool software tools. Don't need about:Buster or HSRemove

Scanning:
1:b) In Safe Mode w/... ran on-line scans at Trend Micro, Symantec, and McAfee AVERT -- NO INFECTED FILES.
2: Cleaned hard drive w/ CCleaner, cleaned out temp files.
3: Ran Ad-Aware SE w/VX2 Cleaner and Spybot w/DSO Exploit + immunized -- NO SPYWARE FOUND. (I run both regularly and had just cleaned out some Spyware couple of days ago - no new ones)
4: Ran CWSchreader (&FIX) and Kill2me. Nothing unusual.

BOOTED TO NORMAL MODE:
I downloaded and ran Hijack This and have a log saved if you wish to see it.

( I followed the instructions in the READ ME FIRST article in detail and found nothing that was infected. My computer is much cleaner I'm sure because I cleaned many fragments of old uninstalled programs, etc. I have always kept my temp files and cookies cleaned out but these softwares were more thorough.)

Are there any other steps or programs to run now or what is your next suggestion? I see that there are 'thesearchmall' references all through the Hijack This log and probably much more that shouldn't be there that I can't recognize.

I still need your help, please!! My IE is still being hijacked while I surf.

 

I used HiJackThis v 1.99 & ran a scan in normal boot, all applications and browser closed. Started the program from it's own folder in Program Files.

Prior to this I ran all suggested steps outlined in READ ME FIRST...and results are explained in my previouis post.

Attached is the log file from today's HJT scan as requested. Looking forward to your analysis of the scan and cleaning out the bad guys.
Thanks

 

Success!
I finally got back home and tested my computer thoroughly for the hijacker after following your instructions. No sign of it any more. Your systematic procedure worked great. Thanks for all the help