Computer keeps freezing..

Your log from MBAM shows that you took no action for the items that were found. Did you save this log before fixing the items and have you indeed fixed them?

Where you unable to run ComboFix?

For MGtools, did you save MGtools.exe to C:\MGtools.exe as requested. It must be save to the root folder of your Windows boot drive. Do not save it anywhere else and do not attempt to Run or Open it from the download link. You must save it to your PC. Please try again and make sure you follow the instructions exactly. If you get any error messages, see if it is one of the ones that are explained on the download page. If the error is not on the download page, give us the exact word for word message.

Please click Start, Run, and enter cmd and click OK. Does this will open a command prompt window? If so, enter the below commands at the command prompt each followed by the enter key. If not, tell me what happens.

The bold black are commands. The red is merely informational.

cd \MGtools <-- this changes to the MGtools folder and the prompt should change to C:\MGtools>
GetRunKey <-- this will try to run all one scan from MGtools. Tell me what error messages, if any, you see.
ShowNew <-- this will try to run all another scan from MGtools. Tell me what error messages, if any, you see.

If they run, you should have a log here:
C:\MGLogs.zip

If this does not work...then try this:
Click Start, Run, and enter cmd and click OK. This will open a command prompt Window. In the command prompt Window, enter the below commands each followed by the enter key:

ver > c:\ver.txt
dir C:\MGtools > C:\flist.txt

Now attach the C:\ver.txt and C:\flist.txt files here. Note there is a space after the dir and before the >

 

Combo has been having issues and may be available again. However we can skip that for now. You have a rootkit infections.

Please go to the control panel / user accounts and disable the Help Assistant account.

Please use add/remove programs to uninstall:
Ask Toolbar

Now download The Avenger by Swandog469, and save it to your Desktop.

* Extract+ avenger.exe from the Zip file and save it to your desktop

Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

After clicking Fix, exit HJT.

* Run avenger.exe by double-clicking on it.
* -Do not change any check box options!!
* Copy everything in the Quote box below, and paste it into the Input script here: part of the window:

* Now click the Execute button.
* Click Yes to the prompt to confirm you want to execute.
* Click Yes to the Reboot now? question that will appear when Avenger finishes running.
* Your PC should reboot, if not, reboot it yourself.
* A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.

You will need to boot to the Recovery Console using your xp cd. If you do not have that, we have choices to do this.

First you can try again to Download ComboFix from http://download.bleepingcomputer.com/sUBs/Beta/KittyFix.exe and save it to your Desktop.

Note: This is a beta version of combofix and might be unstable but tests done so far have proved it works well

Note: It is important that it is saved directly to your desktop and run from the desktop and not any other folder on your computer.

* Now Exit/Close/Disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
* Close any open browsers and any other programs you might have running.
* Double click on kittyfix.exe & follow the prompts.
* o If you are using windows XP It might display a pop up saying that "Recovery console is not installed, do you want to install?" Please select yes & let it download the files it needs to do this
* When finished, it will produce a report for you. Please attach the "C:\ComboFix.txt" to your next message.

Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze.

If you can not install the Recovery Console, then try:

. You can then go to the repair functions and then to command prompt. Change from X:\Sources to C:\ and run fixmbr.

Now boot to the Recovery Console and run the fixmbr to clear a Master Boot Record infection that you have.

You can read the below to help you do this:

http://support.microsoft.com/kb/307654


Then boot back into normal mode.

Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

Then attach the below logs:

* C:\ComboFix.txt --> you were able to do this.
* C:\MGlogs.zip

 

Would you mind telling me how it was fixed? Did you end up doing a reformat? Do I need to give you instructions to clean up from our procedures?

 

My instructions would have gotten you clean, but I understand that you may have felt more comfortable with just reformating.

Have a safe holidays.

 

Not a problem. Have a happy holidays.