My Anti Spyware

[stephuk]

Yeah, I've managed to open SuperAntiSpyware, Malwarebytes, AVG and iTunes...

[12056]

Did you extract TDSSKiller, before trying to run it?

[stephuk]

Yes I did. And the .exe file is directly on the desktop as you said (not on a folder on the desktop)

[12056]

Download and try Sophos Anti-Rootkit.

Post the log file of any items found, do not remove them yet!

[stephuk]

Been trying a few times now (both in safe and normal modes) but every single time the scan stops whilst Scanning Windows registry... HKEY_LOCAL_MACHINE

It's a nightmare, it looks like nothing works!!

[12056]

Go ahead and Update and Scan with MalwareBytes then, maybe they've added better rootkit detection.
Post the results...

[stephuk]

Same error code as earlier when trying to update Malwarebytes. It's updated by 115 days so wont have anything new anyway. Ran scan anyway and same things happened again (it found one object then froze on a mfc .dll file and I had to manually shut down)

[12056]

Delete the version of Combofix you have, and download a fresh version:

Please download ComboFix from here.
Close your browser, and Double-Click on the tiger icon.
Let ComboFix run unhindered, mouse clicks may cause it to stall.
Your computer may restart, after the scan, this is normal.

Please post the ComboFix log, it will appear after the restart.

[stephuk]

I've replaced the copy of ComboFix on my desktop and tried to run it in Safe Mode. Computer screen went all blue and crash dump and rebooted itself. I've tried again but same thing happened...

I'm trying to think that theres not much more we can do - you've been a fantastic help over the last two weeks but unfortunately nothing really works, and I do think you've done a great job but the computer has probably been too corrupted...

Do you have anything else in mind we could try or would you recommend a format? If so, I will have a few questions as I'm not familiar with the procedure at all - will it definately erase everything on the computer (I would back up my files to an external drive prior to this obviously but will it erase all errors/hidden malware we havent been able to defeat?) / is the process straightforward enough I would be able to do it / would I need a recover CD as I havent been given one when I bought the computer or would Windows automatically go back to factory settings (and I would only have to enter the activation code) ?

[12056]

At this point, a reformat is not a bad idea.

will it definately erase everything on the computer (I would back up my files to an external drive prior to this obviously but will it erase all errors/hidden malware we havent been able to defeat?)

Yes, so you should only back-up non-replaceable files, and files you created to avoid re-infection!

would I need a recover CD as I havent been given one when I bought the computer or would Windows automatically go back to factory settings (and I would only have to enter the activation code

Yes, you usually can order them from your PC's manufacturer (Dell, Compaq, etc...) for a small charge + shipping.
And, Yes, it may ask for the activation code, but this should be located somewhere on the machine.

[stephuk]

Thanks, I will try and proceed with reformat then if there's no more other options!!

I will go and ask in the shop where I've bought the computer but if I need to order the CD I wont be able to reformat for two weeks as I'm going away on holiday. The activation code is indeed stuck to the machine.

I will let you know how I get on. I guess it will all be explained with the CD but in case, do we do it from Safe Mode?

Thanks again for your help, really appreciated all your advices to get rid of the malware, even if we didnt succeed with all of it.

[12056]

You won't need safe mode to use the CDs...

You'll boot from the CD all together, rather than the hard-drive.

[stephuk]

Thanks for ur answer, I've contacted Acer and the restore CD is quite pricey really so before I order it I wanted to ask you if it would be worth upgrading to Windows 7 (infected computer is running Vista and I have to say I find 7 so much better) - the main question is if I buy an upgrade CD from shop, will it have the same effect as a restore (i.e. erasing everything from computer incl. all remaining malwares etc) and starting from new factory settings with brand new system? I asked the Acer guy on the phone but I dont think he understood what I meant and he didnt have a clue what he was talking about. He said that all pre-included Acer programs wont work anymore (but cant really think of any Acer programs I've been using to be fair...) - I know this is beyond what this forum is designed for but I would appreciate ur guidance:)

[12056]

Thanks for ur answer, I've contacted Acer and the restore CD is quite pricey really so before I order it I wanted to ask you if it would be worth upgrading to Windows 7 (infected computer is running Vista and I have to say I find 7 so much better) - the main question is if I buy an upgrade CD from shop, will it have the same effect as a restore (i.e. erasing everything from computer incl. all remaining malwares etc) and starting from new factory settings with brand new system? I asked the Acer guy on the phone but I dont think he understood what I meant and he didnt have a clue what he was talking about. He said that all pre-included Acer programs wont work anymore (but cant really think of any Acer programs I've been using to be fair...) - I know this is beyond what this forum is designed for but I would appreciate ur guidance:)

An upgrade CD would remove all files, esp. since you are switching from one OS to another (Vista -> Windows 7).

[12056]

This topic has been closed as no response has been received.
If you need further assistance, please PM me and I'll return shortly!