uTorrent trojan

Welcome to Major Geeks!


You need to attach the log from Malwarebytes.

I suggest you try unchecking the options mentioned for SUPERAntiSpyware where it mentions what to do if you have a Blue Screen/crash. If that does not work, try running it in safe boot mode.

Skip Spybot; however you need to get MGtools to run. Make sure you DOWNLOAD (not open or run) and save the MGtools.exe file to your root folder as requested. Then you need to double click the MGtools.exe file to run it. Based on your ComboFix log you did not name MGtools properly. You have this which cannot run!!!!!

C:\MGtools.1.2D0D17.efw

It should be:

C:\MGtools.exe

If you just simply rename the improperly named file to MGtools.exe, it will run.

 

Did you try the things suggested for SUPERAntiSpyware?

 

You did not disable Spybot's Teatimer as requested in the READ ME. It could be getting in the way of running other tools like SUPERAntispyware. Disable Spybot's Teatimer now (see the READ ME) then uninstall Spyware Guard which is too old to be of use anymore (you also already have Pest Patrol from CA installed and don't need Teatime or Spyware Guard ), then uninstall Viewpoint Media Player as requested in step 1 of the READ ME.

Then reboot your PC. Now see if SUPERAntispyware will run. If it does, attach a log.

Also tell me if CA is still detecting problems. If so, attach a log that shows exactly what it is detecting and where.

 

Make sure you do the other items a gave first too.

Note: You should not use Teatimer if you are going to keep CA's Pest Patrol installed.

 

Okay we will skip SUPERAntispyware.

You never answer the below from message number 5.

 

Are you referring to the below folder?

C:\Documents and Settings\Joe\application data\utorrent

It is more than like due you or someone else having used the below application which is not a problem it is just a potential problem as are all P2P or torrent programs:

µTorrent

I'm not sure why CA cannot just delete the folder but you can do it manually. However it is not even a problem.

 

But did you try to delete the folder yourself?

Sorry this is not a malware issue.

I suggest that you uninstall them, reboot (do not skip), redownload current versions and reinstall and see what happens. If you still have problems, describe EXACTLY what happens when you try to run them.

I donn't understand this sentence. Download what to play what? If they are saying you need to download a file, it would not be on your PC! That is why they are saying you need to download it. This also does not sound like malware; however I want you to run the below just incase.


Download and run FindAWF by noahdfear.

• Please download FindAWF by noahdfear.
  • FindAWF.exe
• Save to your desktop.
• Double-click the FindAWF icon.
  • If a Security Alert shows, allow the program to run.
• As instructed, press any key to continue.
• Use the following option: Press 1 then Enter to scan for bak folders
• The scan may take a while, please be patient.
• When done, a text file, Find AWF report is produced.
• Please attach the Find AWF report in your next post.

 

You need to be specific! What is whatever and what is something?

The FindAWF log is clean, thus it is looking more and more like any remaining issues are not malware.