You have more than AntiVirus 2009!
This one should go after my instructions "C:\WINDOWS\system32\brastk.exe"
HJT Scan only select and remove the following
O3 - Toolbar: (no name) - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - (no file)
O4 - HKLM\..\Run: [brastk] brastk.exe
O4 - HKUS\S-1-5-18\..\Run: [brastk] C:\WINDOWS\system32\brastk.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [brastk] C:\WINDOWS\system32\brastk.exe (User 'Default user')
O20 - AppInit_DLLs: karna.dat
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
Run MalwareBytes again attach log then continue below.
Then go back to the 8 Steps install SuperAntispyware update it and and configure it as below:
After installed double-click the icon on your desktop to run it.
It asks to update the program definitions, click Yes.
Under Configuration and Preferences, click the Preferences button.
Then Scanning Control.
In Scanner Options make sure the following are checked:
1. Close browsers before scanning
2. Scan for tracking cookies
3. Terminate memory threats before quarantining.
4. Leave the others as they are.
Click Close button to exit control center.
On main screen, Scan for Harmful Software click Scan your computer.
On the left check C:\Fixed Drive.
On the right, under Complete Scan, choose Perform Complete Scan.
Click Next to start the scan.
It will take while as it scans your computer.
After the scan, a summary box will popup. Click OK.
Make sure all in the white box has a check next to it, click Next.
It will quarantine what it found, and pop up a log file. Attach log file back to Thread.
If asked to reboot, click Yes.
If you missed the log file or cannot post perhaps in Safe Mode then....
To retrieve the log do the following:
After reboot, double-click the SUPERAntispyware icon on desktop.
Click Preferences-Statistics/Logs tab.
Under Scanner Logs, double-click SUPERAntiSpyware Scan Log. It will open..
In notepad, then save as sas.log.
Close SAS.
Attach saslog back to thread with a new HijackThis log.
Mike