First off let me start off that I am not a computer whizz, have not been targeted by attacks or viruses much before, and am therefore clueless about common viruses that are annoying people the most lately. So I might be asking some stupid questions, but if anyone is helpful enough, thanks in advance...
The situation: I tried to install a software yesterday. Scanned it with norton and it said it was fine. After running it however, popups started to come from everywhere, some toolbar popped up in my taskbar, files started appearing in C:\ , my desktop wallpaper changed with all my icons highlighted in blue, my computer started lagging bigtime and when rebooting it does not always start up correctly (sometimes I just see a frozen screen of an empty desktop, sometimes it does start everything up) and after booting up I get asked by a file in system 32 to download/run some exe file which I naturally cancel. Right now I'm getting a popup from http://www.amaena.com/pastelblue/?mp...aid=mgwvfrcg10 telling/spamming me the following:
"Your system is currently sending private information and documents to a remote computer. One of these processes (Win32res.exe) has just sent us the following information:
- \Windows\System32
- \Program Files\Internet Explorer
- \My Documents
- Drive C:\ files
Click here to download official intrusion detection system (IDS software) and SCAN FOR FREE! "
Probably one of the popups generated by the virus, but I'm paranoid right now.
My following course of action was running norton and it did find loads of viruses. Most were deleted but it left some alone. Ran this and spybot a few times more and I'm stuck at 1 file that norton can't delete: dxclib303562752.dll in my system32 map (I can't delete it manually either) and spybot also tells me it can't delete some Command Service registry keys and tracking cookies from Avenue A, Inc. , Mediaplex, Winsoftware.Winantiviruspro2006.
Now I have read some old posts in archives on this forum talking about hijackthis so I downloaded HijackThis 1.99.1. Is someone willing to help me? What do I do now? Thx in advance for reading this confusing post.