Stuck with 2 work computers filled with trojans spamware

Welcome to Majorgeeks!

Below are our required malware cleaning procedures. Note, since you are having problems with safe boot mode, I suggest that where we specify running in safe boot mode during the procedure that you just ignore it and run everything from Normal boot mode.

Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, renaming, running, and posting HijackThis logs as attachments.

• Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
• Make sure you check version numbers and get all updates.
• Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

• After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:

Downloading, Installing, and Running HijackThis​

Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around.​

• When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:
  • CounterSpy - only for Windows XP, 2K, & NT users
  • AVG Antispyware log - ONLY IF NEEDED you were not able to run CounterSpy. - only for Windows XP, 2K, & NT users
  • Bitdefender - from step 6
  • Panda Scan - from step 6
  • runkeys.txt - the log from GetRunKey.bat
  • newfiles.txt - the log from ShowNew.bat
  • HijackThis

NOTE: You can only attach 3 files in a single message so it will require that you use two messages to attach all of these logs!

 

The procedure is designed to be run in the order written. Not running these scans as requested only makes the scans run afterwards (GetRunKey, ShowNew, and HJT) not as useful. It makes it more difficult to resolve your problems and makes manual steps for us longer to complete. We will not have the time to fix hundreds of PCs every week if directions are not followed because it makes our jobs harder and requires more time which we do not have.

You also had AVG Antispyware ignore what it found which is again a waste of time. Now you need to run it again and have it fix what it finds and attach a new log. Then you need to run BitDefender and PandaActiveScan and attach their logs.

Afterwards you will need to attach new logs from GetRunKey, ShowNew and HJT.


You have a lot of malware!!! All the steps are necessary.

 

Also make sure you follow the directions in step 6 where it specifies to uninstall your old Sun Java version and install the current version from the link given. You are using a version that is at least 3 years out of date. Without the new version, the online scans may not even run.

It also does not look like CCleaner was run or perhaps it just did not clean your Temp folders. Did you change the options? There are files in your Temp folder from as far back as March 10th and some of the files are malware.