My computer started acting up on me again today. I had connected with evilfantasy before about this computer, and had fixed the problems, but I confess I didn't follow up with them after symptoms were fixed. Now I am having even worse stuff going on.
Started with a pop-up window something about a "firewall alert" that looked like it was from windows, popping up every few minutes, then my background on the desktop shanged to the Antivirus 2008 background.
When I ran SAS it found 20 or more items, then went to a BSOD, so I ran it again, continued on after it found about 20 items, but before it was done scanning, then cleaned those and ran it again letting the scan complete, it found 3 more after that. So there are two SAS logs attached, one from each scan. MBAM also cleaned over 20 items. So it does look worse than before. Here are the logs, i promise I will follow through this time until given the all clear. Thanks for any help is greatly appreciated.

[Saving space - attachment deleted by admin]forgot to mention that i use my comp for work. currently running "dr. cure it" as instructed previously (did run it last time, just never got back to you.Just be sure to post the log please.

And run a new HijackThis scan afterwards and post that log.Everything in MBAM says No action taken. You will need to run that again and let it fix everything it finds this time.

Then run a new HijackThis scan afterwards and post that log.That was kind of wierd, I know i hit to erase the files after the scan. Maybe I accidentally ran it again after or something. Anyway, it only found one file infected this time. I also re:downloaded combo fix and ran that. so here is the updated MBAM log and the combofix log. Thanks again for your help.

[Saving space - attachment deleted by admin]Note: the below instructions were created specifically for this user. If you are not this user, DO NOT follow these directions as they could damage the workings of your system

Delete these files/folders, as follows:

1. Go to START > Run > type Notepad.exe and click OK to open Notepad.
It must be Notepad, not Wordpad.
2. Copy the text in the below code box by highlighting all the text and pressing Ctrl+C

Code: [SELECT]KillAll::

Driver::
MCHINJDRV

Folder::
C:\Program Files\xsbbbfg
C:\Documents and Settings\All Users\Application Data\jcrevabk

File::
C:\WINDOWS\system32\spmsg2.dll
3. Go to the Notepad window and click Edit > Paste
4. Then click File > Save
5. Name the file CFScript.txt - Save the file to your Desktop
6. Then drag the CFScript (hold the left mouse button while dragging the file) and drop it (release the left mouse button) into ComboFix.exe as you see in the screenshot below. Important: Perform this instruction carefully!



ComboFix will begin to execute, just follow the prompts.
After reboot (in case it asks to reboot), it will produce a log for you.
Post that log (Combofix.txt) in your next reply.

Note: Do not mouseclick ComboFix's window while it is running. That may cause your system to freeze

----------

How is everything now?OK, here are the new logs. Thanks again.

[Saving space - attachment deleted by admin]How is everything now?

Everything seems ok now, I was able to change the desktop back
and can access antivirus web sites again. no popups either
Thank you very much. Anything else I should?
Yes we need to clean up now.

Download OTCleanIt.exe and save it to your Desktop.

• Double-click OTCleanIt.exe.
  
• Click the CLEANUP! button.
  
• Select Yes when the "Begin cleanup Process?" prompt appears.
  
• If you are prompted to Reboot during the cleanup, select Yes.
  
• The tool will delete itself once it finishes, if not delete it yourself.

• Click Start Now
  
• Check the box next to Enable thorough system inspection.
  
• Click Start
  
• Allow the scan to finish and scroll down to see if any updates are needed.
• Update anything listed.