Inactive W32/Malware!Gemini

[Inactive] W32/Malware!Gemini

Using F-Secure's online scanner on my computer, four instances of W32/Malware!Gemini were found in two programs and one in System. The programs were reputable free programs, such as eRightsoft's Super (Simplified Universal Player Encoder & Renderer) and EasyGPS, each downloaded from the owners website.

I had recently uninstalled these programs because I discovered (with F-Secure Online) this malware in them, and then later reinstalled them again. However, I see that F-Secure online scanner has found the same malware again. I then scanned the computer with Malwarebytes (277,326 files - 3hrs 45mins) and received a totally clean result. A boot-scan with my Avast! anti-virus also revealed nothing.

Who do I believe? Any suggestions would be appreciated.

Thank you.

 

Thanks. It appears that I have some work to do before I get back to this thread.

 

Thank you.

I've had to reboot twice already while using gmer. It froze my desktop when trying to save the log. Third time lucky!

 

After going through the second stage (gmer) of the suggested procedures (for the third time) before seeking help, and having my desktop freeze for the third time when I clicked on gmer, requiring me to press the power button to exit on three occasions, I decided to remove gmer. I also had to do a system restore because everything had become snail-like after my attempts thus far.

I decided to try Broni's suggestion. I submitted two of the files in question and here's the result:

Super (eRightsoft) - 2 (4.7%)out of 43 antivirus engines (Cat-Quickheal & eSafe) simply reported 'Suspicious File'.

Easy GPS - 3 out of 42 (7.1%) antivirus engines (Emsisoft, Ikarus, Clamav) reported 'PUA.packed', 'Aspack' & 'W32.suspect'.

With so few engines reporting suspicious behaviour, might I have reason to suspect that I'm dealing with false positives here?

 

Many thanks.