Need help removing TMZ virus

[REDACTED]

Uh, I'm basically just copying another person's post but you'll understand why, I would have attached all the logs and such but I'm not sure if the procedure would still be identical or if the responses he got would be up-to-date

I have recently acquired the virus trz.tmp and have been worrying about it for the past few hours. I recently came across the knowledge that this virus is specific to each machine and has to be handled specifically; and with me and my limited knowledge i have no clue what to do so i was wondering if you of you lovely people would be kind enough to help. 

[essexboy]

Could you attach the logs please

[REDACTED]

Mbam took ages to scan, now that I'm trying to install Farbar I'm having more issues - every time I click the download link (from bleepingcomputer.com, the first google result that comes up) avast tells me the website is suspicious, went through and downloaded it anyways, once the download finished (all three times, from a number of sites) avast and avira both told me that the file was malicious and recommended I quarantine it. Should I just ignore this?

[Michael (alan1998)]

Yes, ignore it

[Pondus]

  avast and avira both told me   

So you have avast and Avira installed ...... never install multiple AV

Why Using Multiple Antivirus Programs is a Bad Idea   http://blog.kaspersky.com/multiple-antivirus-programs-bad-idea/

General: Uninstalling a third-party antivirus software  https://www.avast.com/en-eu/faq.php?article=AVKB11#artTitle

[REDACTED]

Uninstalled Avira, still having issues downloading FRST. Pretty sure the only way I'll be able to actually download the file is by switching Avast's shields off but I feel that with TMZ detections attacking me every other minute this probably isn't the wisest idea.

[Pondus]

Pretty sure the only way I'll be able to actually download the file is by switching Avast's shields off     

That is exactely what you have to do so essexboy can get those logs and fix your issue......

[REDACTED]

Well, three days later and my computer finally finished the freakin scans

[essexboy]

Hi you also have AVG installed, either that or Avast will need to go

Could you post a screenshot of the Avast popup please

CAUTION :  This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:
 

CreateRestorePoint:
C:\Program Files\GUT28C9.tmp
EmptyTemp:
CMD: bitsadmin /reset /allusers

 
Save this as fixlist.txt, in the same location as FRST.exe

Run FRST and press Fix
On completion a log will be generated please post that

[REDACTED]

oops, had AVG deactivated for so long I forgot that I even had it. uninstalled. fixlog seems quite inconclusive.

[essexboy]

Did you copy all in the quotes to the fixlist as it appears to be empty

[REDACTED]

i did, that's why i mentioned how inconclusive it was

[REDACTED]

im still trying to get a result

[essexboy]

Something weird is happening that I am not seeing

Download and Install Combofix
 
Download ComboFix from one of the following locations:
Link 1
Link 2
 
VERY IMPORTANT !!! Save ComboFix.exe to your Desktop
 
* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

• Double click on ComboFix.exe & follow the prompts.
  
• Accept the disclaimer and allow to update if it asks

• When finished, it shall produce a log for you.
• Please include the C:\ComboFix.txt in your next reply.[/b]
  

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
3.  If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.


Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

[REDACTED]

k, farbar gave me some output now, but of course i'm having more issues

combofix didn't produce a log - either in c:/, or on the desktop where the executable's located.

i did, however, have to download combofix twice and the second time it saved as ComboFix(1).exe. I ran the executable under that name, it scanned fine but afterwards i got an error saying "you cannot rename ComboFix as CombiFix(1)" and it renamed itself back to ComboFix. i don't know if that had anything to do with the log?