Quite often, users notice too much computer braking and go to the “Task Manager” to see which process gives too much CPU load or consumes too much RAM. And then suddenly the list shows up completely unclear where the service Utorrentie.exe came from. What is it and how to get rid of this scourge, now let's see. Let's make a reservation right away: this is a virus. And you should get rid of it immediately.
Utorrentie.exe: what is this process?
Some users claim that this service is responsible for displaying ads in the uTorrent program. I must say that this is an absolute mistake. In fact, if you look at the publisher, you will find a bunch of "Utorrentie.exe - WebHelper". What is this couple?
It is believed that WebHelper is a service for quickly detecting potential vulnerabilities in a computer system with the suggestion of installing anti-virus or anti-spyware software. Utorrentie.exe is one of its components. However, this module has absolutely nothing to do with protection systems. Allegedly, today you can find more than 60 varieties of the process Utorrentie.exe (WebHelper) 32 bits. We’ll see how to deal with this threat, but first we’ll decide how it can harm the user.
Symptoms of infection
This threat is classified as a browser hijacker virus. Not to mention that the virus can reproduce its own copies and load system resources, the problem is much deeper.
At the very beginning of its activity, the virus changes the start page in all installed browsers and the search system. After this, a powerful influx of advertising and redirect (redirection) to third-party resources that have nothing to do with a given search query occurs. Further, the appearance of a huge number of pop-up windows and various kinds of drop-down menus is more and more activated. Finally, the virus simply steals the user's confidential data in the form of logins, passwords, PIN codes, etc.
Utorrentie.exe: how to remove a virus using disk utilities?
Based on all of the above, it is easy to understand that the virus should be removed without wasting time until it fully begins its destructive activity. What is most sad, the threat can penetrate the computer when installing other programs, when the user chooses an automatic installation, and the distribution itself is downloaded from a dubious source. Many even the most powerful full-time antiviruses can skip such a threat, so there is no hope in the issue of removing them.
For a full scan of the system, portable scanners should be used, and even better, use special utilities that can load their own interface even before the start of the operating system. One of the most powerful programs is the Kaspersky Rescue Disk utility, which can work both in graphical mode and from the command line. The advantage of this program is the ability to detect and remove even hidden threats in RAM.
How to remove the virus manually?
But such an approach may not always work, so removing the virus will have to be done manually. And here is the interesting thing. It is in no way masked either in system processes or in the installed programs section.
So, first of all, you need to deactivate the Utorrentie.exe process. How to disable this service? Yes, very simple. You should use the standard "Task Manager", where you need to make a forced termination on the tab of active processes (it is advisable to do the same for all services and marked "WebHelper"). If for some reason this method does not work, you need to reboot the system in safe mode (usually F8 when starting the boot) and repeat the procedure.
Further in the programs and components section, which is called from the “Control Panel”, you just need to uninstall the application in the standard way, then go to the system registry (regedit in the “Run” menu bar) and set the search to the original program name (Utorrentie) first, and then the full name of the virus (WebHelper). Found keys are deleted.
Finally, in the "Explorer" we search by virus name and delete all the files found (usually the executable file is located in the user folder in the Roaming / Updates directories (or the same, but the installation directory of the uTorrent program acts as the initial directory). Again , we delete the found files bypassing the "Recycle Bin" (Shift + Del).
Combination of uninstaller, optimizer and antivirus
So, we figured out the Utorrentie.exe process. What it is is also clear. Let's see how you can simplify your task by using three types of programs to remove a threat.
First, we complete the processes in the "Task Manager", as shown above, and then use the iObit Uninstaller utility. In the list of applications we find everything related to Utorrentie.exe and WebHelper, and perform the standard procedure. Then the so-called powerful scan starts automatically, and the found files and registry keys are deleted. In this case, it is mandatory to put a tick in front of the file destruction line at the bottom of the program window.
After that, we use some kind of optimizer program (CCleaner, Advanced System Care or something like that) for troubleshooting. It is advisable to use all the cleaning modules, although this will take longer.
Finally, to be completely sure that the virus has been completely and completely removed, we launch some kind of anti - virus scanner like Dr. Web CureIt! or KVRT and check the system (you can use the aforementioned disk utility).
Conclusion
This is inherently the Utorrentie.exe virus. What kind of threat, I think, is already clear. As for the options for neutralizing it, one can advise using the antivirus launch from optical media or a method using a special uninstaller and optimizer. True, some users, either by naivety or ignorance, simply try to rename the source file Utorrentie.exe to something else, and then delete it from the "Explorer". Please note that this does not work, the process is activated again, and not one renamed file appears in the original folder, but two files, one of which looks like the original one, without changes.