EMail USPS Virus, + Virus:HTML/Virut.BH, BN

I hope you are able to help.

Source of Infection:
On 01/06/2012 a momentary lapse of not reading an e-mail or the attachment's extension carefully left me with the USS email virus - hidden files, url re-direction and ultimately a corrupt boot record.

What Steps I Have Taken So Far:
Before having the opportunity to learn about Major Geeks, I made an effort to get up and running, discovering a "fake" MBR and getting rid of it with GParted and rewriting the record with BootRec, then running MalwareBytes' and ComboFix. They helped and gave me some hints, and eventually I managed to make progress.

After coming across the thread Email USPS virus - all files hidden, url redirection, I tried to adopt some of the instructions to my situation, i.e., running MalwareBytes again, SuperAntiSpyware, Combofix with the CFscript (modified to fit my particular situation re: KB*.sys), and MGTools

Current Status:
(1) No more redirection
(2) Probably majority of files/directoris are NOT hidden anymore, although taskbar and some desktop items are hidden yet when I try to create another it tells me that one already exists
(3) MGTools will (subsequently) not work and crashes, as do other programs, immediately upon opening
(4) Microsoft Office wants to reconfigure itself, then can't find the key information, etc.
(5) Microsoft Security Essential is now continuously giving me notifications of infection by Virus:HTML/Virut.BH, BN and other variants -- mostly .HTML files, but including .EXE files

Attached are the logs that have been generated over the course of my efforts.

I am running Windows 7 (Enterprise) 64-bit with SP1. I was running Microsoft Security Essentials at the time of infection, which simply disappeared from the face of my computer (and subequently re-installed).

Please consider helping me in any way possible -- direct instruction, reference, referral, etc.

Thank you,

Brokenstick

 

Thank you very much.

I will do those two items right away.

I have an additional question: There are actually two drives in my 'puter configured as RAID 1; does this present any malware removal issues in and of itself?

Again, many thanks!

 

The "unhide.exe" file seems to have worked.

The results of the eSet Online Scanner are attached.

View attachment eSet Online Scanner Log 2012-01-09.txt

 

Microsoft Office required me to go through the repair and activation process, but works fine so far.

Adobe Acrobat Pro and Windows scanning seem to be an issue, but I am thinking it may just need a driver reinstall.

Not that serious but none of the Win 7 games work (the apps crash on launch). I uninstalled them and then reinstalled them through the control panel, but no luck.

Microsoft Security Essentials continues to "detect" Virus:HTML/Virut.BH. encounters an "error" in trying to disinfect the files; the error is that it can't find the "virus".

 

Surprisingly, MSE does NOT have a log!

The infected files initially found were all over the place, and most were successfully disinfected according to MSE (executables and non-executables).

Then they were mainly .html or .htm files in the Adobe directory, and primarily the "Legal" and "Help" files for the various Adobe applications.

The most recent were the .html files in PhoneGap application directories.

 

Thank you very much for all of your help. I am sure you do not need me to tell you what a tremendous service you provide to the online community.

I am very grateful personally for your help.