C:\Windows\svchost.exe Trojan.Agent

Please make sure that all protection software is disabled and try again. If it still does not run, please try to run it in safe boot mode. It will be a key program in fixing your infection.

Not true!!! It is totally free.

This is due to your infection. Normally the indiviual log files will be created anyway as long as you did not stop MGtools from running all the way thru. Try the below which will try to package up the individual logs.

Please right click on C:\MGtools\ReZip.bat and select Run As Adminstrator and tell me if that runs. If it does, it should tell you that C:\MGtools\MGlogsR.zip was created. If so, attach it.

 

You should not be running TDSSkiller from Internet Explorer. You should be downloading and saving it to your Desktop. Then you should locate it on your Desktop and Right click on it and select Run As Adminstrator.

 

See if you can use another PC to download it and then copy it to the problem PCs Desktop. Do the same for MGtools.exe

Note: We could try running a fix with Hitman Pro to remove that infected Boot Sector issue it pointed out, but you should be aware that even using Hitman or TDSSkiller to fix this, could result in the PC being unbootable. Important data should be backed up first if possible.

 

Yes but you should be running it from the Desktop of the infected PC as I stated. The same goes for MGtools. If you do not run MGtools from the infected PC's harddisk, it will not work.

 

Yes you have more to do.

First uninstall the below:
Java(TM) 6 Update 25
Optimizer Pro v3.0
Wajam

And what is the below that you seem to have installed at the same time as Optimizer Pro?
Office Suite X 3.3

Is this a hack?


Now please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
• The tool will open and start scanning your system.
• Note: That JRT may reset your home page to a google default so you will need to restore your home page setting if this happens.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Attach JRT.txt to your next message.

Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).

Then attach the below logs:

• the JRT.txt log
• C:\MGlogs.zip

Make sure you tell me how things are working now!


I'll be back tomorrow night!

 

Yes you need to follow the instructions I gave to create a NEW log and attach it.

I'm not sure that Office Suite X.3.3 is the same thing as Open Office which has a differnent name and is from Apache ( http://www.openoffice.org/download/ ) but I could be mistaken as I never installed it.

 

You're welcome. Your logs are clean.

If you are not having any other malware problems, it is time to do our final steps:

1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
3. Go back to step 4 oof the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
6. If running Vista or Win 7, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
7. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
   related to MGtools and some other items from our cleaning procedures.
9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
   • Refer to the cleaning procedures pointed to by step 6 of the READ ME
     for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
   • Then reboot and Enable System Restore to create a new clean Restore Point.
10. After doing the above, you should work thru the below link:
    • How to Protect yourself from malware!

 

I did not ask for a new log. I gave you final instructions already.

 

You're welcome.

Just the final instructions.

 

You're welcome. And Happy NY to you too.

Surf safely!