Win XP SP3 opsys.
I had the AV2010 virus and I thought I had cleaned everything up (using info from other posts at GtG). When I started up after doing some cleaning, after entering the user and user p/w at the Welcome screen, I get a green screen with huge black letters saying, "YOUR SYSTEM IS INFECTED!".
WHATS INTERESTING IS THAT, IF I LOG ON AS THE OTHER USER (at the Windows Welcome prompt), I DO NOT GET THE "INFECTION" NOTICE!
First, I deleted about 2bg of temp files.
Then I used ERUNT to backup the registry.
I then scanned using MalwareBytes which found eight infections. Restarted. -> Still get "infected" wallpaper.
I scanned with SuperAntiSpyware and it found 2 problems in the registry; both "Browser HIjacker Internet Explorer Zone Hijacker. SAS quarantined the two items. Restarted -> Still get "infected" wallpaper.
I have just completed a GMER scan and I've attached the log.
I copy/pasted the GMER log file below. Please help. I've been at this for a week and at/near wit's end.
GMER 188.8.131.5281 - http://www.gmer.net
Rootkit scan 2010-02-15 05:23:19
Windows 5.1.2600 Service Pack 3
Running: 9mbv40cw_thisis gmer.exe; Driver: C:\DOCUME~1\Bill\LOCALS~1\Temp\pxtdapow.sys
---- System - GMER 1.0.15 ----
SSDT \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys (SASKUTIL.SYS/SUPERAdBlocker.com and SUPERAntiSpyware.com) ZwTerminateProcess [0xAE5B70B0]
---- EOF - GMER 1.0.15 ----