Nasty malware -can't figure out how to kill it

Today I worked on an infected system and after scanning with MBAM and Hitman Pro there remained a trojan in this location:

C:\Users\All Users\Start Menu\Programs\Startup\uninstall.exe

AVG resident auto-protect continually removed it, but it would immediately re-spawn. I also deleted the file in SAFE mode, but it just comes back. Any idea how to remove this?

 

Rootkit? Try Gmer.

From what you have described it sounds like it could be Mebroot/Sinowal. I would suggest taking a look at this page for removal info:
http://en.kioskea.net/faq/5590-sinowal-mebroot-mbr-rootkit-infection#method-recovery-console-and-fixmbr

 

Boot from a Rescue CD such as AVIRA and/or Kaspersky, scan the hard drive and clean any Malware detected.

 

do you empty system restore after removing threat

 

Could be an autorun worm?

Try step 2 at the link below.
My Antispyware

 

Hi victek123,

Has your problem been solved?

 

.
AVG identifies the trojan as:

BackDoor.Generic11.ASWZ

 

.
Yes, System Restore was turned off to erase all restore points.

 

here......it is a similar scenario....might help.....http://www.bleepingcomputer.com/forums/lofiversion/index.php/t269531.html