Thank you for your assistance. I now know that I should not try this without guidance. The infected computer belongs to a friend of my mother and she still uses AOL as her primary email and browser. It started 11 days ago and appeared to be a hijacker just effecting AOL. The url it was redirecting to was variations on adnxs.com. So I ran MBAM on 12/12 and quarantined what it found. (logs attached) Then 3-5 days later the hijacker came back. The owner was leaving for holidays with her family so I was only able to try again yesterday. I followed some steps I found online and I ran Spybot v1.6.4 and cleaned a few things it found like Doubleclick. (logs attached). Then I ran rKill and it seemed to indicate that the hosts file was infected. (logs attached). So I found a MS page on how to reset the hosts file and did that. Last I ran ComboFix and decided I was over my head and needed assistance. Lesson learned. (logs attached). I hope I did not do too much damage. Please let me know what to do next. Thank you very much. mbam-log-2014-12-12 (22-55-02).xml protection-log-2014-12-12.xml Checks.141228-1427.log Checks.141228-1438.txt Fixes.141228-1716.txt Update downloads.log Rkill B4.txt Rkill before.txt Rkill.txt hosts.txt ComboFix.txt
