Hello and to BLEEPING COMPUTER
My name is Johnny Computer and I will be helping you with your malware related computer issues today
Before we move on, please read the following points carefully.
§ First, I would like to inform you that most of us here at Bleeping Computer are volunteers. The logs you will be asked to submit can take time to analyze. Please try to match our commitment to you with your patience toward us.
§ Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
§ IMPORTANT-----> Post all logfiles as a reply rather than as an attachment. If you can not post all log files in one reply, feel free to use more posts.
§ Perform everything in the correct order. Sometimes one step requires the previous one.
§ If you have any problems while following my instructions, Stop and ask any questions you may have.
§ Please stay with me until I have notified you that your system is All Clean. Absence of symptoms does not necessarily mean your machine is clean.
§ If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
§ IMPORTANT NOTE : Please do not delete, download or install anything unless instructed to do so.
DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision. Doing so could make your system inoperable and could require a full reinstall of your operating system and losing all your programs and data.
Going over your logs I noticed that you have uTorrent installed.
§ Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
§ They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
§ Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users.
§ The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.
It is pretty much certain that if you continue to use P2P programs, you will get infected again.
I would recommend that you uninstall uTorrent, however that choice is up to you. If you choose to remove these programs, you can do so via Start > Control Panel > Add/Remove Programs.
If you wish to keep it, please do not use it until your computer is cleaned.
Please download AdwCleaner by Xplode and save to your Desktop.
§ Double click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8 users right-click and select Run As Administrator
§ Click on the Scan button.
§ AdwCleaner will begin...be patient as the scan may take some time to complete.
§ After the scan has finished, click on the Report button...a logfile (AdwCleaner[R#].txt) will open in Notepad for review (where the largest value of # represents the most recent report).
§ The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
§ Copy and paste the contents of that logfile in your next reply.
§ A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
Please download Farbar Recovery Scan Tool and save it to your Desktop.
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system, download both of them and try to run them. Only one of them will run on your system, that will be the right version.
§ Right-click FRST then click "Run as administrator" (XP users: click run after receipt of Windows Security Warning - Open File).
§ When the tool opens, click Yes to disclaimer.
§ Press the Scan button.
§ When finished, it will produce a log called FRST.txt in the same directory the tool was run from.
§ Please copy and paste the log in your next reply.
Note 2: The first time the tool is run it generates another log (Addition.txt - also located in the same directory the tool was run from). Please also paste that, along with the FRST.txt into your next reply.
IN YOUR NEXT REPLY I NEED:
1.) Your ADWCleaner log
2.) Your FRST Log