So to round up whats happened today (i gotta log for tonight
)
1) We think we have discovered the source of the issue.
2) We have installed Combofix/OTL ran additional scans
3) We removed Combofix
4) We ran Wireshark to see if anything odd was going on.
Outstanding questions: Is there a way to test the router for any wrongdoing?, Can i delete the folder Recovery which is on A:/Recovery ? it seems locked at the moment with no files inside i belive its creation was during the Combofix installation (if anyone could confirm this and if its safe to delete that would be super i think after doing research it may connected to the windows recovery console/recovery system which generates after using combofix but am unsure as of yet) In addition Essexboy is currently looking at the wireshark capture and am currently waiting for any additonal instructions for OTL.
Have a good night!