Hi all,
I am really hoping you can help me. I have the exact same problem as stated in the first post.
Every 5 minutes Avast gives a warning that it found Malware (Virus/Worm) in C:\Windows\Temp\xxxx.tmp\svchost.exe. The xxxx are made out of letters that change every time.
My computer runs on Windows Vista, I think it has Service Pack 2? No idea really.
So, I tried the solutions you gave already. I downloaded Dr. Web CureIt and it found BackDoor.Tdss.565, exactly as was said. But then all of a sudden the Dr.Web scanner was cut off with the message that the program didn't function properly and that my computer had to shut it down. This happened 3 times, every time when Dr.Web tried to scan the file: C:\Windows\system32\drivers\atapi.sys. So, it still didn't get to finish the scan.
I really don't know what to do know. I tried scanning with Dr. Web for 4 times now and everytime the program shuts itself down when it reaches that atapi.sys file and it will not scan to the end.
I tried to get rid of BackDoor.Tdss.565 by doing it manually, the way Polonus suggested, but I can't find any of the processes (like: wow64main.exe %ALLUSERSPROFILE%\Application Data\Microsoft\Network\svchost.exe) in the Windows Task Manager... They are just not there.
I really don't know what else to do and this Backdoor thing is driving me mad :'(. I probably got it through downloading an infected torrentfile. I am actually afraid that C:\Windows\system32\drivers\atapi.sys might be infected as well. Why else would Dr. Web cut itself off there?
Note: I am totally not into computers, therefore I cannot give you any specific logs or information (I wouldn't even know how to get a log from a scanner...sorry!). I really hope that someone can give me some hands-on information how to get rid of this thing. Oh yeah: My computer runs on Windows Vista, I think it has Service Pack 2?
Thanks a lot!
Lieke