Alureon K, yes I think I have it too!!!

[Pondus]

Are there any experts on yet who can look at my log please?

remeber we are not all in same time sone.....and essexboy usually arrive here late UK time

[essexboy]

OK lets kill that now

Download the latest version of TDSSKiller from here and save it to your Desktop.
 
 

• Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
   
  
   
  
• Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.
   
  
   
  
• Click the Start Scan button.
   
  
   
  
• If a suspicious object is detected, the default action will be Skip, click on Continue.
   
  
   
  
• If malicious objects are found, they will show in the Scan results and offer three (3) options.
• Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
   
  
   
  
• Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.


THEN

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

If you have Malwarebytes 1.6 or better installed please disable it for the duration of this run

Run OTL

• Under the Custom Scans/Fixes box at the bottom, paste in the following
  

  :OTL
  [2012/03/28 13:34:40 | 000,000,000 | ---D | C] -- C:\Users\Kim\AppData\Roaming\Ispeaw
  [2012/03/28 13:34:38 | 000,000,000 | ---D | C] -- C:\Users\Kim\AppData\Roaming\Tayccy
  [2012/03/28 13:34:38 | 000,000,000 | ---D | C] -- C:\Users\Kim\AppData\Roaming\Rageaf
  
  :Files
  ipconfig /flushdns /c
  
  :Commands
  [emptytemp]
  [CREATERESTOREPOINT]
  [Reboot]
• Then click the Run Fix button at the top
  
• Let the program run unhindered, reboot the PC when it is done
• Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

[CandyRed]

Thanks for the reply. I've downloaded TDSSkiller but it won't run. Have tried double clickeing, right click open, right click run as admin....

[essexboy]

OK this is where it will now become a little complex
Will you be able to burn a CD on another computer ?

We will take it in baby steps

Go start and in the search box copy/paste

Diskmgmt.msc

Click the file that appears

The following window will appear
Ensure that all drives are visible
Then take a screenshot
Post the capture as an attachment

[CandyRed]

a) I can't burn a CD on another computer today. Have an external cd burner I can connect to hubby's notebook but it's at work.

b)
screenshot requested

[essexboy]

Hmm it is not the variant I thought... Must be a new one

On completion of this could you upload the entire zip file to mediafire http://www.mediafire.com/
and post the sharing link

Download AVPTool from Here to your desktop 
   
Run the programme you have just downloaded to your desktop (it will be randomly named ) 
 
First we will run a virus scan  
 
Click the cog in the upper right 

 
 
Select down to and including your main drive, once done select the Automatic scan tab and press Start Scan 

 
Allow AVP to delete all infections found
Once it has finished select report tab (last tab)
Select Detected threats report from the left and press Save button
Save it to your desktop and attach to your next post
 
 
Now the Analysis
 
Rerun AVP and select the Manual Disinfection tab and press Start Gathering System Information 
 

 
On completion click the link to locate the zip file to upload and attach to your next post 
 

[CandyRed]

Disaster

Downloaded as instructed. Ran scan, which said it would take 10 hours so left it running overnight. when i got up this morning it was asking if I wanted to delete infected files (I think), so i said yes.It did that then treid to restartbut startup failed.Had options of running a startup repair (HP assistant) which I did but it still wouldn't start. Then had option to try restore. I have tried every restore point back to over a week ago and it still won't start up.
Am now posting from hubby's netbook.
only option left that i can see is to restore back to factory settings. just thought i'd post before going to this final resort?

[essexboy]

Can you remember which files were offered for deletion ?

On the startup page that you can get to is there an option repair my computer ?

If so does that allow you to access the command prompt


 
Select your operating system

 
Select Command prompt

[CandyRed]

Sorry, can't remember files,7 threats were detected. I think the first couple were in emails?
There is an option Run Computer Checkup and if I select that there is then an option to open command prompt

[essexboy]

OK then when it fails to start does it give the MBR as a reason.  I do not want to reset that in case it is not the problem

[CandyRed]

it doesn't give a reason.

[essexboy]

From the command prompt could you type the following and let me know the output

bootrec /ScanOs

[CandyRed]

Successfully scanned Windows installations.
Total identified Windows installations: 0
The operation completed successfully.

X:\windows\system32>





i'm thinking that isn't good 

[essexboy]

OK first we will try the fixboot option - then if need be the rebuild

From the command prompt type the following and then reboot if possible to normal windows 

bootrec /FixBoot

[CandyRed]

it says the operation completed successfully, but is still just a command prompt window