Two Trojan Horse Downloader.Generic3.QA Found during V-Scans

Hello MajorGeeks,
Earlier this week, there were slight indications that something was causing a minor slowdown on the computer. I ran a Virus Scan and it found a Trojan Horse Downloader.Generic3.QA which was deleted. Following this, I ran SpyBot Search & Destroy which found five tracking cookies. This was unusual considering that during the past several months, all scans found nothing. I removed everything that was found.

This morning, the AV ran an automatic scan and again a Trojan Horse Downloader.Generic3.QA was found and deleted. Once again, I ran SpyBot Search & Destroy which found two of the same tracking cookies as it had during the prior scan. As I did prior, I removed what was found.

I completed all of the steps in the READ and RUN ME, and the scan results are attached.

 

Here is the BitDefender Scan. There was a problem before running it, though. A message warned of an inaccurate result if the scan was performed because BitDefender was unable to gather new definitions. I have a screenshot of the message, but it is too large to attach here and I cannot reduce its size any further. I ran the scan anyway and have attached it here.

Please review these logs when you can and advise me if there is anything malicious that they have found. Thank you so much for your assistance.

 

Hey Chaslang,
Thank you for the prompt reply.

I unistalled the old McAfee AV several months ago, but have not uninstalled the remaining components from the suite package. I am only using one Anti-Virus application, and that is AVG.

I had printed out the instructions early last year and was referring to that paper while I was completing the steps. At that time, step 6b was not part of the READ & RUN ME. I apologize for overlooking the update. I have completed step 6b and both logs are attached.

It appears that with CounterSpy, I do not have a choice. Each time I open CounterSpy, it requests a Registration Key. I do not have a paid version of it, and I presume that is why all the options are not accessible. It appears that I can only run scans, but cannot quarantine or delete anything with CS.

This is the only scan that picks up this WeatherBug, and the funny thing is that I did not install any such thing and do not even see anything that shows up weather information. I would like to remove it, as you say it is adware and does have an impact on PC performance, however, I cannot seem to do so with CS and I do not even know where it is located to remove it without CS.

Thank you again, Chaslang, for checking the logs and providing the assistance.

 

Hey Chaslang,
Having been extremely busy the past several days, I have not had as much time as necessary to address this issue. I have also not used the computer as much either. But I want to follow up with this and let you know where things stand now.

I have uninstalled CounterSpy.
I installed AVG Anti-Spyware. I scanned the computer and it found several issues. I am including a log.
I manually removed WeatherBug with the Registry merge and file removal as you provided.
And tonight, I have installed both GetRunKey and ShowNew according to the procedures outlined here and have included logs for both.
Finally, I ran HijackThis and have included a log since it has been a few days.

Please tell me how these logs appear as of now. Also, has CS left anything in the registry that should be removed? I know some programs tend to leave their remnants once uninstalled.

 

Here is the HijackThis Log.

Please let me know how these logs look and what else I should do.

Thank you so much, Chaslang, for providing the manual procedure to remove Weatherbug, and for helping me on this issue.