Uh, I’m basically just copying another person’s post but you’ll understand why, I would have attached all the logs and such but I’m not sure if the procedure would still be identical or if the responses he got would be up-to-date

I have recently acquired the virus trz.tmp and have been worrying about it for the past few hours. I recently came across the knowledge that this virus is specific to each machine and has to be handled specifically; and with me and my limited knowledge i have no clue what to do so i was wondering if you of you lovely people would be kind enough to help.

Could you attach the logs please

Mbam took ages to scan, now that I’m trying to install Farbar I’m having more issues - every time I click the download link (from bleepingcomputer.com, the first google result that comes up) avast tells me the website is suspicious, went through and downloaded it anyways, once the download finished (all three times, from a number of sites) avast and avira both told me that the file was malicious and recommended I quarantine it. Should I just ignore this?

Yes, ignore it

avast and avira both told me

Why Using Multiple Antivirus Programs is a Bad Idea http://blog.kaspersky.com/multiple-antivirus-programs-bad-idea/

General: Uninstalling a third-party antivirus software https://www.avast.com/en-eu/faq.php?article=AVKB11#artTitle

Uninstalled Avira, still having issues downloading FRST. Pretty sure the only way I’ll be able to actually download the file is by switching Avast’s shields off but I feel that with TMZ detections attacking me every other minute this probably isn’t the wisest idea.

Pretty sure the only way I'll be able to actually download the file is by switching Avast's shields off

Well, three days later and my computer finally finished the freakin scans

Hi you also have AVG installed, either that or Avast will need to go

Could you post a screenshot of the Avast popup please

CAUTION : This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:

CreateRestorePoint: C:\Program Files\GUT28C9.tmp EmptyTemp: CMD: bitsadmin /reset /allusers

Save this as fixlist.txt, in the same location as FRST.exe

https://dl.dropboxusercontent.com/u/73555776/FRSTfix.JPG

Run FRST and press Fix
On completion a log will be generated please post that

oops, had AVG deactivated for so long I forgot that I even had it. uninstalled. fixlog seems quite inconclusive.

Did you copy all in the quotes to the fixlist as it appears to be empty

i did, that’s why i mentioned how inconclusive it was

im still trying to get a result

Something weird is happening that I am not seeing

Download and Install Combofix

Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

• IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

[*]Double click on ComboFix.exe & follow the prompts.
[*]Accept the disclaimer and allow to update if it asks

http://img.photobucket.com/albums/v706/ried7/NSIS_disclaimer_ENG.png

http://img.photobucket.com/albums/v706/ried7/NSIS_extraction.png

[*]When finished, it shall produce a log for you.
[*]Please include the C:\ComboFix.txt in your next reply.

Notes:

1. Do not mouse-click Combofix’s window while it is running. That may cause it to stall.
2. Do not “re-run” Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.

Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

k, farbar gave me some output now, but of course i’m having more issues

combofix didn’t produce a log - either in c:/, or on the desktop where the executable’s located.

i did, however, have to download combofix twice and the second time it saved as ComboFix(1).exe. I ran the executable under that name, it scanned fine but afterwards i got an error saying “you cannot rename ComboFix as CombiFix(1)” and it renamed itself back to ComboFix. i don’t know if that had anything to do with the log?

Delete both copies of combofix and download a fresh copy please and then run that

v

finally… here ya go. as of yet, computer’s still slow but a bit more responsive.

Is avast still alerting ?

hasn’t so far