TROJ_BUDDYLINK

This is a Trojan Virus. Also known as Clicker:Win32/BuddyLinks.A, PMS/Drop.Wintsu
 
Upon execution, this Trojan drops a copy of itself in the user's Application Data folder using a random file name.  It also visits a specific Web site, though as of this writing, this malware generates errors when trying to access the said URL.

Solution:

Identifying the Malware Program

To remove this malware, first identify the malware program.

Terminating the Malware Program

This procedure terminates the running malware process. You will need the name(s) of the file(s) detected earlier.

Open Windows Task Manager.
On Windows 95/98/ME systems, press
CTRL+ALT+DELETE
On Windows NT/2000/XP systems, press
CTRL+SHIFT+ESC, then click the Processes tab.
In the list of running programs*, locate the malware file(s) detected earlier.
Select one of the detected files, then press either the End Task or the End Process button, depending on the version of Windows on your system.
Do the same for all detected malware files in the list of running processes.
To check if the malware process has been terminated, close Task Manager, and then open it again.
Close Task Manager.

Removing Autostart Entries from the Registry

Removing autostart entries from registry prevents the malware from executing at startup. In this procedure, you will need the name(s) of the file(s) detected earlier.

Open Registry Editor. Click Start>Run, type Regedit then hit Enter.
In the left panel, double-click the following:
HKEY_LOCAL_MACHINE>Software>Microsoft>
Windows>CurrentVersion>Run
In the right panel, locate and delete the entry or entries whose data value is the malware path and file name of the file(s) detected earlier.
Again in the left panel, double-click the following:
HKEY_CURRENT_USER>Software>Microsoft>
Windows>CurrentVersion>Run

In the right panel, locate and delete the entry or entries whose data value is the malware path and file name of the file(s) detected earlier.
Close Registry Editor.