Hello alpha19862 and welcome to the forum. There may be a way to save your machine:
Download the free
Dr. Web Cure It! in
SAFE MODE to your desktop to scan for Winlogon and Explorer infections.
Download
Dr Web Cure It! from here:
http://www.freedrweb.com/?lng=en on the top right of the page, tick the EULA and then download.
It will download as an 8-digit file
save it to your desktop.
Restart in
Safe Mode and run.
Accept the enhanced version.
Then run the Quick Scan.
About halfway through you will be prompted to buy - just “X” the box closed.
Once finished,
it will generate a log please attach that to your next post.
How Do I Use Dr.Web CureIt!?
http://www.freedrweb.com/cureit/how_it_works/Download
Dr.Web CureIt! and launch the utility in
SAFE MODE. A notification will inform you that the utility is running in the enhanced protection mode allowing it to operate even if malicious programs block access to the Windows interface. In the enhanced protection mode Dr.Web CureIt! is run on a protected desktop where no other application can be launched. In order to continue working in the enhanced protection mode choose OK or click Cancel to switch to the standard mode.
Click the “
Start” button in the anti-virus window. Select “
Yes” in the confirmation dialogue, and wait while Dr.Web CureIt! scans system memory and autorun objects. If you need to scan all or selected disks, choose between “Full Scan” or “Custom Scan” (if you choose “Custom Scan,” you need to select the objects you want to scan), and click on the "Start" button.
Dr.Web CureIt! will cure infected files and place incurable files in quarantine. When the scanning is finished, you can view the report and perform desired actions with quarantined files.
Once the scanning is completed, simply remove the
Dr.Web CureIt! file from your computer (put it in your recycle bin).
If you need to perform another system scan using updated definitions, you will need to download
Dr.Web CureIt! again.
Also, using older software, like SP2 instead of SP3 presents a huge security hole and
may have contributed to getting malware. A good site to keeping software up to date is the free Secunia Software Inspector
http://secunia.com/vulnerability_scanning/personal/ which gives you the vendor's direct download to patches/fixes if needed.
Please let me know if you would like me to proceed with malware removal or not. If not and you feel that your issue is resolved, then please go back to the
first open post in this topic, click the modify button in that Post and change the title/subject, add
[Resolved] to the
beginning of the title so this thread can be closed. Thank you.