|Here are a few goodies that should show a RootKit...|
Please download TDSSKiller
Save it to the Desktop.
Double-click* on TDSSKiller.exe to run the tool.
(*Vista/Windows 7 users, right-click the file, and select: Run As Administrator)
Click the Start Scan button.
Do not use the computer during the scan
If the scan completes with nothing found, click Close to exit.
When the scan finishes it displays a Scan results screen stating whether or not an infection was found on your computer.
To remove the infection, click on the Continue button.
If it does not say Cure on the results screen, leave it at the default action of Skip, and press the Continue button.
Do not change to Delete or Quarantine as it may delete infected files that are required for Windows to operate properly.
Reboot to finish the cleaning process.
If no reboot is requested, click on Report.
A log file should appear.
A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.184.108.40.206_27.07.2010_09.o7.26_log.txt) is created and saved to the root directory (usually Local Disk C:).
>>Please provide the contents of TDSSKiller in your reply.<<
Now, please download GMER:
[A randomly named file downloads. (Recommended)]
Disconnect from the Internet and close all running programs.
Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver:
Double-click on the randomly named GMER file (i.e. n7gmo46c.exe)
Allow the gmer.sys driver to load if asked.
GMER opens to the Rootkit/Malware tab and performs an automatic quick scan when first run. (Please do not use the computer while the scan is in progress.)
If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO
Now, click the >Scan< button.
If you see a rootkit warning window, click OK.
When the scan finishes, click 'Save...' button to save the scan results to your Desktop.
Save the file as >gmer.log<
>>Click the Copy button and Paste the results in your reply.<<
Note: Please, do not take action on any of the information on the GMER report!!
If you encounter any problems, try running GMER in Safe Mode:
If GMER crashes or keeps resulting in a BSODs, uncheck 'Devices' (on the right side) before scanning.
Retired - Doin' Dis, Dat, and slapping malware.