Too many issues to list

First of all, I want to mention that I am running Win XP Pro SP2. I am also on a network where 3 of the 8 computers had different virus/spyware/malware issues over the last 2 weeks. Our breakroom computer I was able to wipe out the hard drive and reinstall Windows. The other computer was fine after running Malware Bytes. My computer however is completely messed up. I have attempted virtually everything and I am at a complete loss what to do next.

The symptoms (random and can't link them to eachother):
1) Windows Update icon on the system tray is yellow and suggests that it is Downloading, but always at 0%. I tried to go online and run the update, but the web page comes up with an error.
2) Google redirects in Firefox
3) Random sites and pop-ups (Mind Quiz and Crush Alert) show up randomly
4) Internet Explorer (never used until I ran thru the clean up process) freezes up and I have to Ctr+Alt+Del to close it.

What I've done to fix the problem:
1) Ran several anti-virus, anti-spyware, anti-malware programs. The only "notable" thing it found was what it called a "Worm:Win32/Rorpian"
2) Ran thru your house cleaning procedures and that's when I encountered the IE problem. I did not reset the router yet because it resets the IP addresses and we end up with lots of work to get it all set back up to working condition with printers, etc. I can and will if you believe that to be a problem after reviewing info I give you. I was also unable to rund the TDSSKiller program (it gets to about 80% and gets blocked).
3) I foolishly paid for Spyware Doctor who apparently is not able to help me fix this problem (or at least I am not confident in their ability since the first process they had me do did not find a problem).
4) I have not run ComboFix or RootRepeal because I believe the instructions suggest stopping before that and waiting for your professional help.

So, there you have it. I am at a complete loss as to how to remove something or fix something that none of the software programs can find. I hate to throw more time and money at this problem without more specific help. I am very close to wiping out this hard drive and starting from scratch, but I was hoping the fixes would be faster than backing up my system and reinstalling all the stuff again. There are several programs used for work and I can use them right now without a whole lot of problems. I would lose an entire day of work (or more) if I had to delete and reinstall the whole system. Hopefully you can help me with this issue before the weekend, otherwise I may just make this my weekend project.

I look forward to your response!

 

Here are a couple other logs that I found. Apparently the TDSSKiller completed a log every time I tried to run it, so maybe that wasn't a problem. I am only including the last TDSSK log along with the MBRCheck log.

Let me know if it is necessary to run the ComboFix, RootRepeal and MGtools programs in order to have a good picture of the problem.

Also, you will notice that I included 2 MalwareBytes files. The first one lists the infection (which I believe was the original or early on in the problem scheme) and the current one shows no infections. I didn't know if that info would help or not so I just included both.

Thanks!

 

Thank you for the help/info. I wasn't completely sure about whether or not the recovery console was going to erase any of my data, so I made sure that I had everything backed up. Once I had it all backed up, I was able to run the recovery console and the fixmbr. The boot up after that was normal and quite a bit quicker than it had been previously. I ran the TDSSKiller and I will attach that file, but it doesn't appear to have found anything. I also wanted to try out the other problems to see if I could make them happen again and so far I haven't had any problems. Right now it looks like my auto updates is downloading and not at 0%, the malwarebytes' found no issues, my internet is not redirecting, and my spyware doctor found 94 minor infections (tracking cookies, etc). So, I think that we are in the clear for now. Thank you for your help and I am curious if the fixmbr was the main problem all along or if it was a result of a virus/malware or something like that. I will probably be trying all the other "cleaning" tricks on a couple other computers on our network to see if that resolves some of their issues as well. Let me know if the tdsskiller file shows something different or if you have any other suggestions to clean things up or avoid future problems.
Thank you again!

 

I have run both of those programs as directed and I am attaching the files. I know you didn't ask for both, but I figured that I have a limited work schedule so it would be easier to leave both of them and not have to worry about you needing the other one later.

Let me know what you find.

Thanks!

 

Everything went very well with the processes you asked me to run.

The only thing I noticed was that after running ComboFix, my web browser went back to Internet Explorer as the default and placed the icon on my desktop. There were no problems with it and I know how to change it, but it's just something I noticed. Other than that, everything seems to be running well.

Thank you!

 

Alright...things were going well until I completed all the steps and then decided to follow your suggestion to update my Win XP. It installed updates and restarted twice, and then it had 1 install left, which was the SP3 update. My computer started to install that update and it was taking a while, but seemed to be OK. For some reason, it seemed to have stalled (said it was running, but after 15 minutes it seemed as though it was hung up). Also, during this process, there was a pop-up box that said "Dr Watson postmortum debugger..." I didn't write it down when I saw it (I know, I should know better), but it didn't have an "x" button so all I could do to get rid of it was hit the close button. I realize that may not be the best thing to do, but I wasn't sure if it was a program installed during the update process, or what. Then, when my computer shut down, it came back with the blue screen (I didn't write that down either). I used the power button to shut down and when it restarted it gave me the option of normal start, safe mode, last known good config. I chose last known good configuration since I figured I had re-enabled the system restore and I had already rebooted my system a couple times after that. So, after rebooting in the last known good configuration, I was unable to get online. I can see my network and work on that and other computers are able to get online (that's how I'm sending this now), but I get an error every time I try to open Firefox or IE. I also don't think that I am able to download e-mails in Outlook, but I haven't spent a ton of time waiting to make sure that nothing comes thru. So, it may be some setting that has something to do with internet access but not network access. Looking for some help and an idea about how to resolve this.
Thank you!

 

OK. I had thought that it didn't install SP3, but it must have installed it partially. So, I went to my add/remove programs and removed the SP3 and rebooted. After it restarted, I was able to open Firefox and IE and get online. I didn't/don't have any more time to deal with it today, but it appears to be back up and running. Maybe you can give me some advice as to why this might have happened and whether or not I should attempt it again.
Thanks again for your help!