amateur

Hi,

I see that you are using uTorrent, a p2p file sharing program. I would like to warn you that the nature of P2P filesharing is so that even if one is using a "clean" program, many of the files downloaded from non-documented sources have the potential of being infected. Even if the program you use is not infected itself, it will still bring malware into your system because more than half of all files available for download from peer-to-peer networks have been deliberately infected with some form of malware. I recommend that you remove it from your system via Add/Remove Programs in Control Panel.

======================================

Please delete Avenger from your desktop, or wherever you downloaded it. It's a dangerous tool to use casually. It can cause serious damage to your system if not used properly.

======================================

Scan with HijackThis and put a checkmark against the following entries:

O2 - BHO: (no name) - {0AEEB5A9-A77F-49E9-8CAA-B27B17F34073} - (no file)
O2 - BHO: (no name) - {43F7034D-313E-4763-B630-C025E178E76A} - C:\WINDOWS\system32\vtsqn.dll
O2 - BHO: (no name) - {674DDFA6-BB3D-427B-961F-E9EEEF293004} - C:\WINDOWS\system32\iifdddd.dll
O4 - HKLM\..\Run: [smgr] mgrs.exe
O20 - Winlogon Notify: iifdddd - C:\WINDOWS\SYSTEM32\iifdddd.dll
O20 - Winlogon Notify: vtsqn - C:\WINDOWS\system32\vtsqn.dll
O20 - Winlogon Notify: winmmt32 - C:\WINDOWS\SYSTEM32\winmmt32.dll
O23 - Service: DomainService - Unknown owner - C:\WINDOWS\system32\gpixafhy.exe (file missing)

Close all browsers/windows except HijackThis and click on "fix checked". Exit HijackThis.

======================================

Open notepad and copy/paste the text in the quotebox below into it:

Save this as ComboFix-Do.txt
Refering to the picture above, drag ComboFix-Do.txt into ComboFix.exe .
This will start ComboFix again. After reboot, post the contents of Combofix.txt along with a fresh HijackThis log in your next reply.