ssrock64

Hello. AdvancedSetup was helping me with this previously (the associated thread is here), but went on vacation before the issue was resolved fully. I have a Malware.Trace infection that MBAM has detected because of the malicious file ASR.dat in C:\Users\Public, and deleted on numerous occasions. However, MBAM isn't able to keep the file from replacing itself a few days after it's deleted each time, which leads me to believe that there is another process somewhere on my machine running to make sure the infection comes back. I've tested this theory by disconnecting my machine from the internet for a few days at a time shortly after MBAM supposedly deletes the infection, and it has come back even without a network connection. On my most recent scan this afternoon, I chose to ignore the quarantine recommendation for the purposes of allowing other scanners to find it if you wish me to run them. My latest MBAM log is here: Malwarebytes Scan Log.txt My FRST scan log is here: FRST.txt My FRST first-time addition is here (I've had the tool installed in the past, but removed it earlier and just installed a new copy): Addition.txt The infection hasn't had any real impact on my use of the computer (yet), but having to remove it unsuccessfully every few days with MBAM is annoying. Beyond that, I want to deal with this before it becomes a larger problem. Please keep in mind what AdvancedSetup has already tried with me when replying. Thank you sincerely for any help you can give.

The latest MBAM scan came back clean this time because I had quarantined and deleted the found Malware.Trace item the day before, like I usually do. My problem isn't that the infection is affecting my computer use (I haven't noticed any sign of an infection beyond it simply being found by MBAM); my problem is that MBAM cannot successfully get rid of it. MBAM deletes the ASR.dat file which is associated with the Malware.Trace infection it finds, but something else keeps re-planting the infection whenever it's quarantined or deleted. It takes a few days each time, but the file associated with the infection always reappears at C:\Users\Public. For example, it reappeared sometime between the time of post #7 and post #11 in this thread. In fact, it's there right now, and will likely be found during my automatic scan this afternoon. My concern is that the steps we've taken may have been fairly useless, since each time MBAM has found that infection I've had it quarantined and deleted. I asked a few times in the thread whether I should just leave the infection alone to be found an treated by the others scanners and tools we've been using, but I never got a definite answer. The only possible time that the infection was present during one of the scans or actions we ran was when we used FRST and the fixlist.txt file. I hoped that my concerns wouldn't be applicable, since another scanner might find the process that kept replanting the ASR.dat file every few days, but it seems that hasn't happened. It's true that MBAM didn't show an infection during the last scan, but my computer is not free of the infection. If I leave it running alone for a few days, even if it's disconnected from the internet, the infection will reappear in a subsequent scan. Since I found that the ASR.dat file has reappeared today, I know it will come up in the scan this afternoon. I don't really understand where to go from here. I appreciate your help, but I feel like I haven't really gotten anywhere yet.

Here's the log from this morning's scan, which came up clean. Still, I know that the Malware.Trace infection will reappear within the next couple days, like it has repeatedly before. Malwarebytes Scan Log.txt

I'm running a scan with MBAM right now after reinstalling and reactivating the software, and I'll post the scan log when it's finished, but I have a question about the actions I've been taking after each scan. Should I be quarantining the ASR.dat file each time it's detected by MBAM, or leave it untreated for the purpose of being found by the other scanners you've had me use? Each time the infection has shown up in an MBAM scan in the past, I've quarantined and deleted it, meaning that other scanners wouldn't find it (though they might find whatever keeps replicating that file every couple days).

The file came back today and showed up in the new scan. Malwarebytes Scan Log.txt

I saved the txt file in my Downloads folder since that's where FRST was saved; I hope that doesn't cause any problems. Fixlog.txt

ESET found no threats, so here are all the other applicable logs: JRT.txt AdwCleanerR0.txt Malwarebytes Scan Log.txt FRST.txt I used AdwCleaner to get rid of Pokki, a piece of bloatware/adware that I didn't use and which came pre-installed on my laptop, but it didn't find anything beyond that. The ASR.dat file associated with the Malware.Trace infection still hasn't reappeared, either.

Here are my Malwarebytes Malwarebytes Scan Log.txt and RogueKiller RKreport0_S_05192014_123905.txt logs. ASR.dat hasn't shown up again in the folder it usually ends up in yet, so I don't know how much use they are right now. If you want me to run the tools again once the infection is back in place at its usual location, just let me know. Thank you.

Please accept my apologies for the lateness of my reply. I was at a music festival all weekend, and wasn't abel to access a computer until tonight. I will run through all your recommended steps tomorrow; I just wished to post something now so the thread wouldn't be deleted overnight. Thank you for your patience.

Hello, everyone. I bought a new Lenovo laptop about a month ago, and the first thing I did was to purchase and install Malwarebytes Pro. It was clean at first (of course), but I've encountered a recurring issue since then. I had a couple of PUP.Optional threats which were blocked by either my browser (Comodo IceDragon running through Comodo's DNS), Malwarebytes, or Windows Defender. I really am not entirely sure which program did the blocking, but I received a popup notification two or three times notifying me upon a legitimate download that PUP.Optional had attempted to download as well. I don't know if PUP.Optional and Malware.Trace are related at all, so I've mentioned it just in case. The main issue I'm having, though, is with a Malware.Trace infection that's resistant to removal, and reinstalls itself within a day or two after MalwareBytes quarantines or removes it. My most recent scan was this morning and removed the infection again, which had places itself repeatedly at C:\Users\Public\ASR.dat, meaning that the file is currently deleted. Because of that, I don't know how useful my FRST logs are, and since I'm very inexperienced with malware removal (coming from Linux systems the past few years which didn't require as much vigilance) I really don't know what I'm doing. I've attached FRST.txt and Addition.txt, and I can add some logs from MalwareBytes scans as well if requested. Thank you! If you need anything from me I'll try my best to provide it, but keep in mind that I'm not accustomed to dealing with malware threats and I may need some things explained to me.