I do not believe you read my posting and are simply replying with a canned speech without reading everything I wrote. I clearly explained that I'm not looking to post log files and have my issue resolved I know it is the TDL4 rootkit and I know how to remove it using the tdsskiller.exe from Kaspersky. I was looking for a place where I could get the TDSS file from to purposely infect a test machine. I was also looking for known websites so I could create a blocklist at the router.
The reason being is I am attempting to see if I can make some sort of tool that searches all of the networked computers for the presence of this threat since currently their is no tool that can do this and it is impossible for me to scan 1000 computers or more by hand using the tdsskiller.exe tool.
I did find a site which has copies of the tdss rootkit hxxp ://Kernelmode.info
Now I just need to figure out how to track the system changes.
Edited by quietman7, 21 December 2010 - 10:41 PM.