I have tried to remove it with MBAM, SAS and HJT to no avail.
Please help me, as formatting and re-installing is not a viable option.
I am running XP Pro SP3 and use Firefox 3.5
Bitdefender is my AV and I use a NAT router, and have an anti-malware HOSTS file in use.
Let me know what other pertinent info that you may need.
When in Firefox, all of my search results are hijacked, AND after a while, my desktop wallpaper will change to a blue background with red lettering stating that my system is infected and then a security scanner opens and starts to scan my system (which I didn't install of course).
When in safe mode I do not have any of those symptoms.
MBAM does pick up the infection, but it re-spawns after reboot.
SAS doesn't even see it.
I even tried SMITFRAUDFIX which did not work.
The attached files were created while in safe mode, because my system just hangs forever in normal mode. I am actually able to boot into windows, but cpu usage stays at 100% and I cannot seem to get any programs opened.
GMER found the following files:
Thanks in advance!