From your DDS log
TCP: {C7D3F404-1ABE-4855-AB37-AA214A87D281} = 93.188.164.125,93.188.160.205
TCP: {EFC14176-A26F-4B19-8B0B-4D1960B7B5DD} = 93.188.164.125,93.188.160.205
93.188.164.125.static.ukrtelegroup.com.ua (93.188.164.125)
93.188.163.0 - 93.188.164.255
Promnet Ltd.
Ondrej Voloshin
Ekaterininskaya str., 41, 65000, Odessa, Ukraine
support@prom-net.com.ua
+380504414402
Hard to say, these people are like roaches that just come out at night. You clicked on a bad link and it infecfed you
Years ago kids and people with nothing else to do wrote viruses, not anymore, all this garbage is written by gangs of cyber criminals.
http://www.google.com/search?q=russi...ient=firefox-a
There is a company in St Petersburg Russia called the RBN ( Russian Business Network ) They promote themselves as a legit company when in fact there resposible for about 2/3rds of all this garbage floating around.
These people are mean and nasty , they disappear every once in awhile only to show up later in a different location. They make millions of dollars from not to savvy people buying what they are trying to sell. If your computer is infected by one of there rogue programs and they prompt you to purchase it to remove what it finds ( the only real infection is them ) what you would be doing is giving your credit card to criminals.
Run OTL and post a new log please