Malware - How to remove (not to be confused with DownloadStudio by Conceiva) is a torrent client that was seen distributing very serious backdoor malware in its automatic updates. Long-time users of should check their computers for malware and remove any that is found.

The backdoor problem is separate from’s other issues, like bundling potentially unwanted software.


Type of threat Trojan,

potentially unwanted program.

Problems with Bundled offers,

a backdoor trojan was pushed as an automatic update.

Symptoms of infection Slow computer,

abnormally high resource usage,

unfamiliar programs being installed,

files and programs returning after being deleted.

How to remove malware Scan your computer with Spyhunter, Malwarebytes, or other scanners,

remove all malware.

What’s the problem with

The usual torrent client problems is a BitTorrent client. It allows users to seed and download files to and from each other. It is most popular in Russia, Ukraine, Belarus, etc.

Like many other torrent clients, gets detected by antivirus tools. That’s not surprising.

Filesharing programs like that are risky, especially to inexperienced users. People might download files from unreliable sources. Those files might be infected. For instance, ransomware such as Foqe spreads in pirated files.

In addition, torrent clients like are free, which often results in them including shady crapware offers in their installers. Any program that advertises other software in its installer is likely to be labeled as a potentially unwanted program (PUP).

The that I downloaded was merely detected as adware –

But, at a point in time, was found to be doing something worse.'s installer is detected by 11 scanners on virustotal.

A backdoor trojan

Some weeks ago, Avast discovered that malware was being distributed in fake Malwarebytes installers. These infected installers were not coming from Malwarebytes. They were coming from somewhere else.

Eventually, Avast found how these fake installers were being distributed – by a few (likely related) programs: the torrent client and three ad blockers called Netshieldkit, Netadblock, and Myadblock.

Here is one of the files that Avast detected installing:

This malware could open a backdoor in the infected computers, which would allow malicious actors to infect them with any other payload. It could do a lot of harm by downloading and installing files, as well as reinstalling them, if they were removed.

You can read the Avast posts for more details on this trojan and on’s behavior in regard to it.

In general, backdoors allow malware to be downloaded and installed on the victim’s computer without their knowledge and consent. This malware could be anything:

  • Spyware that steals clipboard contents and credentials saved in web browsers.
  • Adware that causes pop-up ads and redirects in the browser.
  • Malware that uses the victim’s computer to perform click-fraud.
  • A botnet that uses the computer to send out spam.

In the case of, Avast found that it was spreading an XMRig-based miner and other malware.

How to remove malware

Remove malware

If you were using back in August, then it may have tried to install a backdoor on your computer, as well. If it succeeded, you may notice a few symptoms:

  • Your computer is slower than normal, it’s too hot.
  • Unfamiliar files and programs appear on your drive.
  • Deleted files and programs return on their own.

If any of that sounds familiar, you should check your computer for malware. Use an antivirus program, such as Spyhunter, the real Malwarebytes, or any program that you trust.

Be careful

When users want to use torrent clients, they often have to deal with antivirus detections. Understandably, people just make an exception for or another torrent client.

But this incident is a good reminder to stay vigilant. Every free commercial program has to make money somehow. If you aren’t paying for its development and maintenance, then who is?

In addition, this is a good reminder to always be careful and thoughtful when making exceptions for antivirus detections. When a program that you trust sets off antivirus alarms, consider that it could be a real problem. It’s good consider the detection name and what it means.

Automatic Malware removal tools

Download Spyhunter for Malware detection

Note: Spyhunter trial provides detection of parasites and assists in their removal for free. limited trial available, Terms of use, Privacy Policy, Uninstall Instructions,

Download Combo Cleaner for Malware detection

Note: Combo Cleaner trial provides detection of parasites and assists in their removal for free. limited trial available, Terms of use, Privacy Policy, Uninstall Instructions, Refund Policy ,

How to remove Malware using Windows Control Panel

Many hijackers and adware like Malware install some of their components as regular Windows programs as well as additional software. This part of malware can be uninstalled from the Control Panel. To access it, do the following.
  • Start→Control Panel (older Windows) or press Windows Key→Search and enter Control Panel and then press Enter (Windows 8, Windows 10). Open Control Panel by searching for it in the Start menu.
  • Choose Uninstall Program (if you don't see it, click in the upper right next to "View by" and select Category). In Control Panel, select Uninstall a program.
  • Go through the list of programs and select entries related to Malware . You can click on "Name" or "Installed On" to reorder your programs and make Malware easier to find. Find the program that you need to uninstall.
  • Click the Uninstall button. If you're asked if you really want to remove the program, click Yes. Click the Uninstall button after selecting the program to uninstall. Then click Yes.
  • In many cases anti-malware programs are better at detecting related parasites, thus I recommend installing Spyhunter to identify other programs that might be a part of this infection. Spyhunter marking a program and its components as low-threat malware.
Leave a Reply

Your email address will not be published. Required fields are marked *