Malware Removal Snan Logs

Double-click RogueKiller.exe to run. (Vista/7 right-click and select Run as Administrator)
When it opens, press the Scan button
Now click the Registry tab and locate these detections:

• 
  [RUN][ROGUE ST] HKCU\[...]\Run : 39083 (C:\Documents and Settings\Nicolette Wilson\Application Data\2f1e2\39083.js) -> FOUND
  [RUN][ROGUE ST] HKUS\S-1-5-21-854245398-651377827-1644491937-1003\[...]\Run : 39083 (C:\Documents and Settings\Nicolette Wilson\Application Data\2f1e2\39083.js) -> FOUND

Place a checkmark each of these items, leave the others unchecked.
Now press the Delete button.
When it is finished, there will be a log on your desktop called: RKreport[2].txt
Attach RKreport[2].txt to your next message. (How to attach)
Do not reboot your computer yet.

http://imageshack.us/a/img841/7292/thisisujrt.gif Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Attach JRT.txt to your next message.

Now reboot and rescan with RogueKiller and attach that new log as well.

Be sure to tell me how things are running now.

 

Download OTL to your desktop.

Double-click OTL.exe to start the program.

• Copy and Paste the following code into the Custom Scans/Fixes textbox. Do not include the word Code

Code:

:processes
:killallprocesses
:files
C:\Documents and Settings\Nicolette Wilson\rauoya.exe
C:\Documents and Settings\Nicolette Wilson\Application Data\2f1e2

:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"rauoya"=-
"39083"=-
[HKEY_USERS\S-1-5-21-854245398-651377827-1644491937-1003\Software\Microsoft\Windows\CurrentVersion\run]
"rauoya"=-
"39083"=-
:commands
[PURITY]
[EMPTYTEMP]
[RESETHOSTS]
[REBOOT]

• Then click the Run Fix button at the top.
• Click the OK button.
• OTL may ask to reboot the machine. Please do so if asked.
• The report should appear in Notepad after the reboot. Just close notepad and attach this log form OTL to your next message.

Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).


Then attach the below logs:

• C:\MGlogs.zip

Make sure you tell me how things are working now!