I would hold of on deleting system restore, as at the end of the day a bad restore is better than none.
Reboot into safe mode.
Restart your computer and as soon as it starts booting up again continuously tap F8. A menu should come up where you will be given the option to enter Safe Mode.
If you wish I can investigate via a comboscan log after you have done your scans
Download
ComboScan to your
Desktop.
- Close all applications and windows.
- Double-click on comboscan.exe to run it, and follow the prompts.
- The scan may take a minute. When the scan is complete, a text file will open - ComboScan.txt
Extra Note: When running Comboscan, some firewalls may warn that sigcheck.exe is trying to access the internet - please ensure that you allow sigcheck.exe permission to do so. Also, it may happen that your Antivirus flags Comboscan as suspicious. Please allow the Comboscan to run and don't let your Antivirus delete it. (In this case, it may be better to temporary disable your Antivirus)Post the Comboscan.txt from the Comboscan into your next reply.
EDIT I have just looked at your previous log and I see you have purity as well. So possibly the initial way to go would be to use combofix
O4 - HKCU\..\Run: [Jthl] "C:\Program Files\Common Files\??crosoft.NET\w?nlogon.exe" 99001122
The choice is yours of course as to which route to go but I would recommend combofix after the safe mode scans
Download ComboFix from
[COLOR="Red"]Here[/COLOR][/URL] or
[color="Red"]Here[/color][/url] to your Desktop.
- Double click combofix.exe and follow the prompts.
- When finished, it shall produce a log for you. Post that log and a HiJackthis log in your next reply
[COLOR="Blue"]
Note: Do not mouseclick combofix's window while its running. That may cause it to stall[/COLOR]