Malware Removal Issues

Welcome to MajorGeeks!

Did you not run Malwarebytes' and MGTools.exe per the R & R ME FIRST guide's instructions? I need those logs.

Also, run the below:

TDSSkiller - How to run

 

The log is attached. You meant SUPERAntiSpyware.

However do note that Malwarebytes is extremely out of date!!!!!!!

 

Thanks, chas!

@ JustinR123 -

EDIT: Requested logs have been attached

Please allow me time to review your logs.

dr.m

 

Hello, JustinR123

This is why forums like this request additional logs - there is more work to do besides what the scanners removed!

*Other than the tools our guide instructed you to save there, I strongly recommend that you clean up this account's Desktop immediately leaving only shortcut links. [ C:\Documents and Settings\Administrator\Desktop ] Do not store downloads, exe files, iso files....etc on your Desktop. First it is not a safe place to keep them (i.e., you may loose them due to malware, and a cluttered Desktop is an easy hiding place for malware), and last but not least - it can have an effect on your PCs performance.

* You need to read this stickie thread:
Warning about Porn, Keygens, Cracks, and other Illegal Software

Before we begin, please use MSconfig to reset your system into "Normal Startup Mode" and no longer use it to control your Startups.

Please disable Spybot's TeaTimer as instructed in the R & R ME FIRST guide.
How to disable Spybot's TeaTimer

This is not where you were instructed to save MGtools.exe.

Please move it directly onto your desktop - not in a folder.

Step 1:
You MUST perform Step 6: of the R & R ME FIRST guide and " Disable Any Disk Emulation Software (like Daemon Tools..etc)" before proceeding with the rest of my instructions which follow.

Step 2:
Please look in Add/Remove Programs (Programs and Features if using Vista or Windows 7) for the following and uninstall if found. If you get any errors just make a note and continue on.

Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

Step 3:
Now we need to use ComboFix.

• Make sure that combofix.exe that you downloaded while doing the READ & RUN ME is on your Desktop but Do not run it!
  • If it is not on your Desktop, the below will not work.
• Make sure you have shut down all protection software (antivirus, antispyware, firewall...etc) programs so they do not interfere with the running of ComboFix. *Remember to re-start them before coming back online.
• If ComboFix tells you it needs to update to a new version, make sure you allow it to update.
• Open Notepad and copy/paste the text inside of the below code box into it (make sure you scroll all the way down in the code box to get all lines selected ):

• Save the above as CFscript.txt and make sure you save it to the same location (should be on your Desktop) as ComboFix.exe
• At this point, you MUST EXIT ALL BROWSERS NOW before continuing!
• You should have both the ComboFix.exe and CFScript.txt icons on your Desktop.
  If it asks you to overide the previous file with the same name, click YES.
• Now use your mouse to drag CFscript.txt on top of ComboFix.exe
  
• Follow the prompts.
• When it finishes, a log will be produced named c:\combofix.txt

Note:
Do not mouseclick combofix's window while it is running. That may cause it to stall.

Step 4 :
Open CCleaner - select "Cleaner" > "Run Cleaner" <---use this function ONLY!

Step 5:
Now install the latest Sun Java Runtime Environment

Step 6:
Then run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Windows 7, use right click and select Run As Administrator).

Please attach the new C:\MGlogs.zip file to your next reply.

* Make sure you tell me if you had any problems running this procedure; and answer this - "What malware problems are you still experiencing?"

dr.m