HTTP Infostealer Snifula.B Activity detected every 30 seconds

First a little background. I purchased Quicken 2010 2 days ago. Received an email about updating Quickens digital signature yesterday morning. Without thinking I clicked the link and proceeded to download and install the supposed "updater". After nothing happened I realized I just screwed myself. Having no time to deal with it yesterday, I check out my system today and I keep receiving "A recent attack was blocked" messages from NIS every 30 seconds. It lists risk as snifula.b. I have restarted in safe mode and run a full system scan with no luck. Also used hijackthis and found no values that seemed out of place. Any help would be appreciated.