I have run Spybot, ewido, spy sweeper, Norton Antivirus and ScanSpyware. Each has deleted something, totalling a couple hundred items (look2me, drdownload, Vundo, WinHandler, cookies, contaminated restore points, etc.) Which left the tough one...
After the final All Clear, I rebooted. The desktop repainted, then hung for a couple of minutes. A system command window appeared in the upper left. The task manager showed "project1" as an application. When it closed, I was bombarded with a popup or popunder at least once per minute. Typical host sources were amaena, zip404, etc. There was even a Macromedia Flash object that popped up dead center on the screen.
I ran the checkers again and suddenly had over 200 malware items. My suspicion is that the checkers missed one trojan activated on boot that immediately downloads MANY malware items, reversing hours of scans in a few minutes. I'm going over to my friend's house now to run some new scans.
So, if I post a HijackThis log in the next message, will you suggest a fix?
Thanks!
Scott