Win32TrojanTDSS Infection

hello - another laptop with an infection. I am remoted to the laptop so rebooting is very difficult (to get re-connected).

I have downloaded hijackthis but can't get it to install, nor malwarebytes. I'm attaching a screen shot if that is of any help. I've ran Ad-Aware (already installed) several times. It finds the infected files, asks for a reboot, does a dump, but doesn't apparently get rid of it.

Any help is appreciated.

1. Please download The Avenger by Swandog46 to your Desktop
Link: HERE or HERE.

• Click on Avenger.zip to open the file
  
• Extract avenger.exe to your desktop
  

Note: This tool was posted specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

2. Now, start The Avenger program by clicking on its icon on your desktop.

• Leave the script box empty.
  
• Leave the ticked box "Scan for rootkit" ticked.
  
• Then tick "Disable any rootkits found"
  
• Now click on the Execute to begin execution of the script.
  
• Answer "Yes" twice when prompted.
  
  The Avenger will automatically do the following:
  
  
• It will Restart your computer.
  
• On reboot, it will briefly open a black command window on your desktop, this is normal.
  
• After the restart, it creates a log file that should open with the results of Avenger’s actions. This log file will be located at C:\avenger.txt
  
• The Avenger will also have backed up all the files, etc., that you asked it to delete, and will have zipped them and moved the zip archives to C:\avenger\backup.zip.
  

3. Please copy/paste the content of c:\avenger.txt into your reply.

No avenger.txt created. Machine originally blue screened and had to be hard rebooted. Anything else I can do other than running avenger again and rebooting?

thanks,

Please download the current version of HijackThis from HERE

• Double click and run the installer.
  
• It will install to C:\Program Files\Trend Micro\HijackThis\hijackthis.exe
  
• After installing, you should get the user agreement, press accept and Hijack This will run.
  
• Select Do a system scan and save a log file. This will open a notepad file of everything Hijack This found, copy and paste it back here.
  

The user can't seem to install HJT Belahzur, are you having trouble installing it or is it already installed and you just can't seem to run it?

Can't install hjtinstall.exe

Also awaiting user's return as the machine is locked up during reboot.

Download the GMER rootkit scan from here: GMER

1. Unzip it and start GMER.
   
2. Click the >>> tab and then click the Scan button.
   
3. Once done, click the Copy button.
   
4. This will copy the results to your clipboard.
   
5. Paste the results in your next reply.
   

Note:
If you're having problems with running GMER.exe, try it in safe mode. This tools works in safe mode.
You can also try renaming it since some malware blocks GMER.

Don't mean to bump this but the laptop in question BSOD'd and was reformatted, so topic can be closed.

Did get rid of the virus!