rootkit.TDSS infection, need help removing

[Kolchak]

Lonny. I guess you wanted me to post this too, the result of the 'add-remove' command.

7-Zip 4.57

Ad-Aware

Ad-Aware 2007

Adobe Flash Player 10 ActiveX

Adobe Reader 7.0.9

Apple Mobile Device Support

Apple Software Update

ArcSoft Print Creations

ArcSoft Print Creations - Album Page

ArcSoft Print Creations - Funhouse

ArcSoft Print Creations - Greeting Card

ArcSoft Print Creations - Photo Book

ArcSoft Print Creations - Photo Calendar

ArcSoft Print Creations - Scrapbook

ArcSoft Print Creations - Slimline Card

Auctiva PowerTools

AutoUpdate

AVG Anti-Rootkit Free

AVG Free 8.5

BufferChm

CCleaner (remove only)

CCScore

Coupon Printer for Windows

CP_AtenaShokunin1Config

CP_CalendarTemplates1

cp_LightScribeConfig

cp_OnlineProjectsConfig

CP_Package_Basic1

CP_Package_Variety1

CP_Package_Variety2

CP_Package_Variety3

CP_Panorama1Config

cp_PosterPrintConfig

cp_UpdateProjectsConfig

Critical Update for Windows Media Player 11 (KB959772)

CueTour

Data Fax SoftModem with SmartCP

Destinations

DeviceFunctionQFolder

DivX

DjVu Browser Plug-in 3.5

Driver Updater

Easy Internet Sign-up

Enhanced Multimedia Keyboard Solution

ESSBrwr

ESSCDBK

ESScore

ESSgui

ESSini

ESSPCD

ESSPDock

ESSTOOLS

essvatgt

eSupportQFolder

Express Burn

Express Rip

Flickr Uploadr 2.5.0.15

FullDPAppQFolder

GemMaster Mystic

GOM Player

High Definition Audio Driver Package - KB888111

HijackThis 2.0.2

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows Media Format 11 SDK (KB929399)

Hotfix for Windows Media Player 10 (KB903157)

Hotfix for Windows Media Player 10 (KB910393)

Hotfix for Windows Media Player 11 (KB939683)

Hotfix for Windows XP (KB932716-v2)

Hotfix for Windows XP (KB945060-v3)

Hotfix for Windows XP (KB952287)

Hotfix for Windows XP (KB954550-v5)

Hotfix for Windows XP (KB961118)

Hotfix for Windows XP (KB970653-v3)

HP Boot Optimizer

HP Deskjet 3900 series

HP DigitalMedia Archive

HP DVD Play 2.1

HP Image Zone Express

HP Imaging Device Functions 7.0

HP Photosmart for Media Center PC

HP Photosmart Premier Software 6.5

HP Solution Center & Imaging Support Tools 5.0

HP Update

HP Web Helper

HPDeskjet3900Series

HPPhotoSmartExpress

HPProductAssistant

HpSdpAppCoreApp

InstantShareDevices

Intel® Graphics Media Accelerator Driver

Intel® Matrix Storage Manager

Intel® PRO Network Connections Drivers

Intel® Quick Resume Technology Drivers

Intel

[LonnyRJ]

See if you can copy atapi.sys from this location

"C:\WINDOWS\system32\drivers\iaStor.sys"

and put a copy here >

C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\ <<

Any problems ?

In the windows control panel > java find the option to update and use it

afterwards the older version's can/should be uninstalled via add or remove programs

J2SE Runtime Environment 5.0 Update 6

Java

[Kolchak]

Lonny. Hi. I copied that file as instructed, what was the purpose of that?

I also updated Java, and deleted the old versions.

Thanks for all your help!!!!!

Doug

[LonnyRJ]

Lonny. Hi. I copied that file as instructed, what was the purpose of that?

Earlyer on we had moved it with avenger, it doesnt copy so we needed to put a copy back.

Think Prevention: Put in place a good hosts file

http://www.mvps.org/winhelp2002/hosts.htm

Repeat that proccess about once or even twice a month

To help avoid reinfection see "So how did I get infected in the first place?" http://www.malwarebytes.org/forums/index.p...65&hl=place?

Note: Make sure your programs are up to date - older versions may contain Security Leaks.

To find out what programs need to be updated, run the Secunia Software Inspector Scan.

http://secunia.com/software_inspector/

Surf Safe

[LonnyRJ]

Also: Uninstall combofix, in the furture do not use it unless asked to by an analyst

To do so go start run type

combofix /u

press enter, you should see a confirmation message ?

You can delete avenger to

Any questions or current problems ?

[Kolchak]

Lonny. Hello. Everything seems fine. I have not read the tutorials you listed yet. I will delete the programs you listed.

Here's a non-virus related question. Do you think I would see any improvement if I added more memory to my computer? It has 1Gb, and can support up to 4Gb.

Thanks!!!!

[LonnyRJ]

Yes of course

I think 3 is max unless its on a hi priced newish pc