New Member with a nasty virus

Go to the below link and follow the instructions for running TDSSKiller from Kaspersky

• TDSSkiller - How to run

Be sure to attach your log from TDSSKiller

Please also download MBRCheck to your desktop.

See the download links under this icon

• Double click MBRCheck.exe to run (vista and Win 7 right click and select Run as Administrator)
• It will show a Black screen with some information that will contain either the below line if no problem is found:
  
  • Done! Press ENTER to exit...
• Or you will see more information like below if a problem is found:
  
  • Found non-standard or infected MBR.
  • Enter 'Y' and hit ENTER for more options, or 'N' to exit:
• Either way, just choose to exit the program at this point since we want to see only the scan results to begin with.
• MBRCheck will create a log named similar to MBRCheck_07.16.10_00.32.33.txt which is random based on date and time.
• Attach this log to your next message. (See: HOW TO: Attach Items To Your Post )

 

I am assuming that you have a second hard drive installed ( 1863 GB \\.\PhysicalDrive1 ) which MBRCheck is recognizing as unknown. Nothing else is showing in your logs. I also am assuming you do not have in install disc.

You can create a Recovery Environment disc from one of these downloads ( depending on whether you have a 64bit or 32bit system):
http://digiex.net/downloads/downloa.../2660-windows-7-64-bit-x64-recovery-disc.html

http://digiex.net/downloads/downloa.../2659-windows-7-32-bit-x86-recovery-disc.html

You can use ImageBurn to create the disc.

Then go into the bios and change the boot order to have the cd/dvd drive as first boot device, put in the disc and reboot. Once you are in the RE, choose the command prompt and type in this:
bootrec.exe /fixmbr \device\harddisk1

Then type exit and reboot into normal mode. Then re-run MBRCheck and attach the new log.