Ad-Aware always finds 1 unknown file....HELP!!!

Discussion in 'Malware Help (A Specialist Will Reply)' started by WizeGuyDezignz, Apr 2, 2010.

  1. WizeGuyDezignz

    WizeGuyDezignz Private E-2

    Hi,

    This is my first post here, looks like a great forum! :wave

    Anyhow, I have Windows 7 x64 on my laptop and desktop. While running Ad-Aware Plus for the last few weeks, my laptop keeps finding 1 unknown file. I will remove it and it comes right back on the next scan. I have tried everything I can think of and I can't get rid of it. The desktop is not having this problem.

    I disconnected from the internet, booted into Safe Mode, ran Ad-Aware Plus, removed the file and it still comes back!

    What else can I possibly do to get rid of it? Since it's an unknown file, I can't see where it's coming from. Or can I?

    Any help would be greatly appreciated, because I don't want to have to reformat. Thanks!
     
    WizeGuyDezignz, Apr 2, 2010
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Unless you tell us the exact name of the file and exactly where it is found, all we can suggest is that you run the instructions below to properly check and clean your PC of any malware. For all we know, the file could be valid. Ad-Aware is not high on our recommend software list.

    Please read ALL of this message including the notes before doing anything.

    Please follow the instructions in the below link:

    READ & RUN ME FIRST. Malware Removal Guide



    and attach the requested logs when you finish these instructions.
    • **** If something does not run, write down the info to explain to us later but keep on going. ****
    • Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.

    • After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
    Helpful Notes:

    1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
    2. If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
    3. If you cannot seem to login to an infected user account, try using a different user account (if you have one) in either normal or safe boot mode and running only SUPERAntiSpyware and Malwarebytes while logged into this other user account. Then reboot and see if you can log into the problem user account. If you can then run SUPERAntiSpyware, Malwarebytes, ComboFix and MGtools on the infected account as requested in the instructions.
    4. To avoid additional delay in getting a response, it is strongly advised that after completing the READ & RUN ME you also read this sticky:
    Any additional post is a bump which will add more delay. Once you attach the logs, your thread will be in the work queue and as stated our system works the oldest threads FIRST.
     
    chaslang, Apr 2, 2010
    #2
  3. WizeGuyDezignz

    WizeGuyDezignz Private E-2

    Hi,

    I ran the entire Read & Run Me First with no success and it actually opened a new can of worms.

    First let me start off by saying that SAS & MB didn't find any infected files at all. The only program that is finding this 1 file is Ad-Aware which is completely odd. So I was about to write it off as maybe my computer isn't infected and maybe I have a file somewhere that is setting Ad-Aware off.

    That changed after I ran SAS and a couple of my email contacts emailed me about an email that I supposedly just sent to them. My email sent a mass email out to my entire contact book advertising some website called www.stars-moon-sun.com[do not click...ing someone can help me out! Thanks so much!
     

    Attached Files:

    WizeGuyDezignz, Apr 3, 2010
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    I repeat. You need to tell us exactly what it is finding and where or attach a log. There are no problems showing in any of your logs.

     
    chaslang, Apr 4, 2010
    #4
  5. WizeGuyDezignz

    WizeGuyDezignz Private E-2

    chaslang, I'm so sorry about that. I have now attached the Ad-Aware log. Thank you so much for your help!
     

    Attached Files:

    WizeGuyDezignz, Apr 4, 2010
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    I don't see anything being found by Ad-Aware in that log. It just says the below which is totally meaningless and not a problem anyway:

    Uncategorized...: 1
     
    chaslang, Apr 4, 2010
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds