ok, I've been battling this sucker all day, and I think I've got it licked. You helped, by the way.

First, I had Ewido Anti Malware quarrentine SpywareStrike.exe, though I think I could have just deleted the file. DO NOT USE THE UNINSTALLER.

Then I used killbox to delete and unregister the netwrap.dll. Before that I had been been using it to kill svchost.exe, assuming it was infected. This would also delay that pop up ballon, which made me think there is a relationship there. Then I saw your post, and killed both of them.

Once Killbox finished with netwrap, I then used hijack this to delete any reference to spyware striker.

So far, the system seems free of reinfection.

However, I had to clear the system of a few trojans before I did any of this, so if you are getting it again, I imagine there is still a trojan on the system somewhere, reinstalling it. I guess we'll see if this system stays free of reinfection.

I should mention that this is so new, Spybot, Adaware, Microsoft - none of them even see it. Only Ewido even detects Spyware Striker, though all it does is quarrintine the exe file, it doesn't kill that balloon. I should also mention stopped system restore from saving checkpoints and purged it, because from what I could tell, it was reinstalling from the restore file.

This post was orignially added to a post in the HJT forum.

Help! Infected With Spyaxe Or Variant And, the Noahdfear fix will not work

I split it away and reposted here for it's possible value to others.

At the top of every HJT forum page is this note:

Please do not post to HJT logs.

ah, sorry. Moderate a forum myself, you'd think I'd know better.