1. Head to the Virus Forum since that's the topic... 24x7.
2. Stop using Internet Explorer for everything. Get past it and use Firefox or Mozilla so you don't have to keep cleaning off spyware and pests.
Start with the usual tools I note at http://reviews.cnet.com/5208-6132-0.html?forumID=32&threadID=1313&messageID=15002 and move to HIJACKTHIS and HJT forums if these tools don't slam it.
Bob
OS 
ph sp2
install:clean
cable connection with norton 2004 uptodate
so whenever i try to open IE and goto www.dictionary.com i get to that but if click on any links IE closes and iam pretty sure that this due to some spywares and to be precise a trojan infact
name is trojan.startup.nameshifter.h.trojan and only MS antispyware pciks this up
adaware found 95 and deleted them and spybought found 100 and them in safe mode
now everytime i run MS antispyware it says that this trojan is present and only msantispyware picks this
the location of the exe file is in program files and the name of the folder is some randomly generated one
for me it is utmtst and i cannot delete this folder
if i try to delete the startup entry from hklm\...\run
and then open regedit the entry is there once again
i tried to find the startup in hkr\comfile,hkr\piffile,hkr\batfile,hkr\htafile,hkr\pifile
i amm planning for hijack this next but the registry entry keeps coming
in normal mode i see that 2 exe's which are those trojans and i keep ending them and they reappear as soon as i end like svchost
i tried to rename the exe files to txt's but access denied
the name of the exe is RORsTS.exe and i believe that this is a randomly generated name
also i have system restore off and at this point i have no clue what to do next
i think if i could delete the folder i could get rid of this
if i scan the particular folder with NAV it says it is clean
i tried to take ownership of the folder and then tried to give full permission for the current user and every one and cannot even rename the folder
i get a message "access is denied" the message you get when you try to rename the softwaredistribution folder with automatic update turned on or BITS service turned on
so i have no clue what to do next may be i can try to delete the folder in recovery console after renaming the system file in recovery console so that i will have access to program files folder
the folder i am mentioning is the location of the exe file which is shown by MS antispyware
BTW i can open all the links in safe mode with n/w and reregistered hlink.dll as well
no error report in eventvwr
any ideas or suggesstions pleaseeeeeeeeee
i hope profitt will have an answer for this
and if any more info is required i am glad to give it
with regards
gopi
Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic