Put TDSSkiller from Kaspersky site on a thumb drive using a different computer, renamed it to a .com. Put it in the infected machine, tried to launch =>Nothing
Renamed it to an .exe, it ran and removed the rootkit!
Looks good so far
I got the google hijack, hidden files, drive error, IE popping up..... and occasional blue screen
A ran unhide ==> worked
Malware Bytes ==> removed a few things
Security essentials & McAfee ==> nothing
TDS Killer disappears after hitting run, tried renaming
Gmer reports unstable subkey, says a rootkit may have changed something
Attched GMER and DDS logs in zip file
Edited by fenwicmb, 06 January 2012 - 10:39 AM.