Can't seem to cure the infection

eharring · Aug 24, 2009

Hey guys,
I apologize about not abiding by the rules before. So I recently reformatted my computer and subsequently updated it with the corresponding drivers and security updates. Then, I still noticed that my computer was acting slow and erratic sometimes. So, I downloaded Online Armor Personal Firewall and MalwareBytes Anti-Virus, scanned, and still noticed that my computer would freeze up sometimes, especially during gameplay. Then, I followed your directions through the XP Clean-Up guidelines and ran all of the anti-virus tools. The only tool to pick up something was ComboFix which reported certain files being deleted. The corresponding logs are attached to this thread. Examples of symptoms are graphical lag while dragging windows and playing games that would otherwise be smooth. The same problem goes with playing Youtube videos. Anyways, hope you guys can help.

- eharring

eharring · Aug 25, 2009

Am I missing any information from the previous thread? Do you guys need a DxDiag Log?

chaslang · Aug 28, 2009

eharring said: ↑

Am I missing any information from the previous thread?
Click to expand...

You should have read the stickies given to you in your email and in the RED & RUN ME FIRST. Notably this one: Don't Bump! It Only Hurts You!!! This post only cost you additional delay in getting an answer.

eharring said: ↑

Do you guys need a DxDiag Log?
Click to expand...

Serves no purpose in a malware removal forum.

You are not having malware problems. I suggest that you post in the Software or Gaming Forum. But I suggest that you first stop the below from loading at startup and see what happens. The second could seriously slow your internet connection down.

O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"

Also you need to find out if the below is missing and if you need it for your games:

O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)

Since you are not having malware problems, it is time to do our final steps:

We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.

If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)

Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required

"%userprofile%\Desktop\combofix" /u

Notes: The space between the combofix" and the /u, it must be there.

This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.

Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.

If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.

Go to add/remove programs and uninstall HijackThis.

Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.

After doing the above, you should work thru the below link:

How to Protect yourself from malware!

Log in or Sign up

Can't seem to cure the infection

eharring Private E-2

Attached Files:

ComboFixLog.txt

mbam-log-2009-08-24 (20-00-49).txt

MGlogs.zip

RRlog.txt

eharring Private E-2

chaslang MajorGeeks Admin - Master Malware Expert Staff Member