hello
just finished
C:combofixlog and the other auto generated log both attached…
during the process I noticed the following…
Infected system file lmm32.dll
which combofix tried to recover
Also I’ve just tried notepad and vlc media player and they both started without throwing errors at me!!! 
fingers crossed!
OK a new way of trying to escape detection - one further file failed sigcheck so it will need replacing
Please open Notepad
[*] Click Start , then Run[*]Type notepad .exe in the Run Box.
Now copy/paste the entire content of the codebox below into the Notepad window:
Fcopy::
c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys|c:\windows\system32\drivers\TCPIP.SYS
Then in the text file go to FILE > SAVE AS and in the dropdown box select SAVE AS TYPE to ALL FILES
Save the above as CFScript.txt
Then drag the CFScript.txt into ComboFix.exe as depicted in the animation below. This will start ComboFix again.
http://img.photobucket.com/albums/v666/sUBs/CFScriptB-4.gif
firefox is starting!
I am however getting a similar error message when loading up some of my music apps related to automap (software for mapping midi controllers)
attached
will try and re-install this
A different dll this time
yes a different dll dnssd.dll - lots more on the internet about this one - and no errors on startup at all - it only pops up in relation to “automap” - so maybe I just need to reinstall that??
Here are the logs of the custom combofix you asked me to run…
attached
OK all looks good from my end - that appears to be a part of Bonjour for I tunes
Any further problems ?
ah that might explain it as I removed itunes because it wasn’t working
will have a play with system and try and get everything back to normal
I have to say a massive thank you for your help - no way I could have done that myself - I hope you’ve got a fantastically well paid IT job somewhere!
One last thing
Is it possible the file that infected me with this virus is still on my computer? I do download a lot of samples & software for making music and am worried that it is something like that that gave me the problem - anything I should be doing to ensure it’s gone?
Is it possible the file that infected me with this virus is still on my computer? I do download a lot of samples & software for making music and am worried that it is something like that that gave me the problem - anything I should be doing to ensure it's gone?Probably not as the tools would have shown something untoward
I hope you've got a fantastically well paid IT job somewhereI wish ;D this is just a hobby ?
I will remove my tools now and give some recommendations, but I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean
A good workman always cleans up after himself so…Run OTL and hit the cleanup button. It will remove all the programmes we have used plus itself. MBAM can be uninstalled via control panel add/remove along with ERUNT. But they may be useful tools to keep
We will now confirm that your hidden files are set to that, as some of the tools I use will change that
[*]Click Start.
[*]Open My Computer.
[*]Select the Tools menu and click Folder Options.
[*]Select the View Tab.
[*]Under the Hidden files and folders heading select Do not show hidden files and folders.
[]Click Yes to confirm.
[]Click OK.
XP
Now to get you off to a good start we will clean your restore points so that all the bad stuff is gone for good. Then if you need to restore at some stage you will be clean. There are several ways to reset your restore points, but this is my method:
[*]Select Start > All Programs > Accessories > System tools > System Restore.
[*]On the dialogue box that appears select Create a Restore Point
[*]Click NEXT
[*]Enter a name e.g. Clean
[*]Click CREATE
You now have a clean restore point, to get rid of the bad ones:
[*]Select Start > All Programs > Accessories > System tools > Disk Cleanup.
[*]In the Drop down box that appears select your main drive e.g. C
[*]Click OK
[*]The System will do some calculation and the display a dialogue box with TABS
[*]Select the More Options Tab.
[*]At the bottom will be a system restore box with a CLEANUP button click this
[*]Accept the Warning and select OK again, the program will close and you are done
SPRING CLEAN
Download TFC to your desktop
[*]Open the file and close any other windows.
[*]It will close all programs itself when run, make sure to let it run uninterrupted.
[*]Click the Start button to begin the process. The program should not take long to finish its job
[*]Once its finished it should reboot your machine, if not, do this yourself to ensure a complete clean
THEN
Download Flush Flash from Here and follow the easy to use instructions on the same page
NEXT
Download and run Puran Disc Defragmenter
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
[*]SpywareBlaster to help prevent spyware from installing in the first place.
http://img233.imageshack.us/img233/7729/mbamicontw5.gif
Malwarebytes. Run weekly to keep your system clean
It is critical to have both a firewall and anti virus to protect your system and to keep them updated.
To keep your operating system up to date visit
[*]Microsoft Windows Update
To learn more about how to protect yourself while on the internet read our little guide How did I get infected in the first place ?
Keep safe 
I’ve done everything you suggested other than the defrag which i’ll do once I’ve backed up all my stuff
I’ve also got Acronis True Image 10 - so I think nows the time to use it for the first time in 2 years!!!
Thanks again to everyone especially essexboy
seriously set up a small business doing this for people in your local area!
Well you should be making regular partition image backups, weekly full backup and incremental backups more frequently.
Then it is a doddle to recover from something like this by restoring the last weekly backup image and and incremental backups.
I have been using Drive Image 7.1 for years and if I experience a problem that is going to take much longer than restoring an image (under 20 minutes) then no contest. I have used this many times for computer related problems, none virus related and it is a life saver.