malware logs

Currently reviewing your logs. I'll get back to you with a response ASAP.

 

The infection you have is known to infect router hardware. If you have a router hooked up then you need to follow the instructions for your hardware and reset it to factory default settings. Normally there is a recessed push button type switch that needs to be held down for some number of seconds to do this. After resetting to factory defaults on your router, you will need to reconfigure the router for your network if you have made any changes to the default network setup.

You did not run MalwareBytes, please do so, and attach the log it creates after having it fix anything it may find.

Ask Toolbar <--- UNinstall this garbage.

Delete these if you did not create them yourself:

• C:\bzkyel.txt
• C:\ikmqtr.txt

Download OTM by Old Timer and save it to your Desktop.

• Right-click OTM.exe And select " Run as administrator " to run it.
• Paste the following code under the http://farm3.static.flickr.com/2455/4173556815_a721a91733_o.png area. Do not include the word Code.

Code:

:Files
C:\Users\Preferred User\AppData\Local\Temp\3590.tmp
C:\Users\Preferred User\AppData\Local\Temp\8333.tmp
C:\Users\Preferred User\AppData\Local\Temp\9693.tmp
C:\Users\Preferred User\AppData\Local\Temp\A331.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3033.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3034.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3035.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3036.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3037.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3038.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3039.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3040.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3041.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3042.tmp
C:\Users\Preferred User\AppData\Local\Temp\ms3043.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF136.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF2A8E.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF376.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF3E32.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF3E55.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF6.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF6DC.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF6F71.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF70AB.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF801.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF848A.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF868A.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF888A.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF9A5E.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DF9D88.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DFD7D9.tmp
C:\Users\Preferred User\AppData\Local\Temp\~DFFF2F.tmp

:Commands
[emptytemp]
[Reboot]

• Return to OTM, right click in the Paste List of Files/Folders to Move window (under the yellow bar) and choose Paste.
• Push the large http://farm3.static.flickr.com/2782/4174320048_f01c448b32_o.png button.
• OTM may ask to reboot the machine. Please do so if asked.
• Copy everything in the Results window (under the green bar), and paste it into notepad, save it as something appropriate and attach it into your next reply.

NOTE: If you are unable to copy/paste from this window (as will be the case if the machine was rebooted), open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTM\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.

Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this.

Don't forget the log from running MBAM.

Let us know of any problems you may have encountered with the above instructions and also let me know how things are running now!