falconluver Posted August 21, 2017 ID:1155521 Share Posted August 21, 2017 So I have this 'Temp' files in my windows folder and I dont know if this is a malware or something inside the 'Temp' folder I have many subfolders and applications with names here are some of the names: Folders:1.6CB1F574-F625-49C1-830B-8C54F5DE8BA7 2.7D8D418C-8391-40B8-9B00-29A179B9D84B 3.AF6666CB-F4D6-49ED-B8E7-BD13942C7C82 applications:1.{1DFE796C-0E04-4A77-86F6-5ECE11DE1951} 2.{1F04A3EA-17A2-4A65-BD35-1BAAF1E1848C} 3.{2AF06F42-95AE-4916-AFB3-6945EB6CF1A2} can somebody tell me if these are malwares or something I cant risk getting this laptop infected also I think there are more than 100 of these files and theres those tmp files:TS_8668, TS_87E0 those two are just one part of many, also, theres this "LOCAL" and "LOCAL1" executable windows command files and I dont want to run them coz theyre probably a virus or something my online realtime protector is Windows defender Most of the folders have "dismhost" Applications and dimhost.dll Link to post Share on other sites More sharing options...
Valinorum Posted August 21, 2017 ID:1155524 Share Posted August 21, 2017 Hi , My name is Valinorum and I will be the acolyte today. Before we proceed, please, acknowledge yourself the following(s): Please do not create any new threads on this while we are working on your system as it wastes another volunteer's time. If you are being helped/have solved the issue/no longer wish to continue, notify me in your reply and I will quickly close this thread. Failing to comply will result in denial of future assistance. Please do not install any new software while we are working on this system as it may hinder our process. Malware removal is a complicated process and so don't stop following the steps even if the symptoms are not found. Keep up with me until I declare you clean. Please do not try to fix anything without being asked. Please do not attach your logs or put them inside code/quote tags. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise. Please print or save the instructions I give you for quick reference. We may be using Safe mode which will cut you off from the internet and you will not always be able to access this thread. Back up your data. I will not knowingly suggest you any course that might damage your system but sometimes Malware infections are so severe that only option we have is to re-format and re-install the operating system. If you are confused about any instruction, stop and ask. Do not keep on going. Do not repeat the steps if you face any problems. I am not an omniscient. There are things even I cannot foresee. But what I know took years to learn and perfect the skill. This site is run by volunteers who help people in need in their own free time. I would ask you to respect their time and be patient as sometimes real life demands our time and replies to you can be delayed. Private Message(PM) if and only if I have not responded to your thread within three days or your query is offtopic and personal. Do not PM me under any other circumstances. Your thread is the only medium of communication. The fixes are for your system only. Please refrain from using these fixes on another system as it may do serious damage. Temp or %temp% folder is used by the Windows OS to store the temporary files which are created during the OS is running. It also stores partial downloaded files, update packages when applications are updated. That being said malware do use this location to hide themselved among the many temp files and folders. If you are unsure, please, run a scan with MBAM and report me the result. Regards, Valinorum Link to post Share on other sites More sharing options...
falconluver Posted August 23, 2017 Author ID:1156259 Share Posted August 23, 2017 On 8/21/2017 at 4:27 PM, Valinorum said: Hi , My name is Valinorum and I will be the acolyte today. Before we proceed, please, acknowledge yourself the following(s): Please do not create any new threads on this while we are working on your system as it wastes another volunteer's time. If you are being helped/have solved the issue/no longer wish to continue, notify me in your reply and I will quickly close this thread. Failing to comply will result in denial of future assistance. Please do not install any new software while we are working on this system as it may hinder our process. Malware removal is a complicated process and so don't stop following the steps even if the symptoms are not found. Keep up with me until I declare you clean. Please do not try to fix anything without being asked. Please do not attach your logs or put them inside code/quote tags. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise. Please print or save the instructions I give you for quick reference. We may be using Safe mode which will cut you off from the internet and you will not always be able to access this thread. Back up your data. I will not knowingly suggest you any course that might damage your system but sometimes Malware infections are so severe that only option we have is to re-format and re-install the operating system. If you are confused about any instruction, stop and ask. Do not keep on going. Do not repeat the steps if you face any problems. I am not an omniscient. There are things even I cannot foresee. But what I know took years to learn and perfect the skill. This site is run by volunteers who help people in need in their own free time. I would ask you to respect their time and be patient as sometimes real life demands our time and replies to you can be delayed. Private Message(PM) if and only if I have not responded to your thread within three days or your query is offtopic and personal. Do not PM me under any other circumstances. Your thread is the only medium of communication. The fixes are for your system only. Please refrain from using these fixes on another system as it may do serious damage. Temp or %temp% folder is used by the Windows OS to store the temporary files which are created during the OS is running. It also stores partial downloaded files, update packages when applications are updated. That being said malware do use this location to hide themselved among the many temp files and folders. If you are unsure, please, run a scan with MBAM and report me the result. Regards, Valinorum I dont have MBAM. I just downloaded it free and it doesn't even run I tried running it by Command Prompt Administrator and it don't run Link to post Share on other sites More sharing options...
Valinorum Posted August 25, 2017 ID:1156865 Share Posted August 25, 2017 What happens when you try to install/run it? Link to post Share on other sites More sharing options...
falconluver Posted August 28, 2017 Author ID:1157713 Share Posted August 28, 2017 It doesnt even run I Installed it, it even shows up in the programs on control panel I uninstalled it since it doesnt work, like, I click on it, nothing I run it as admin, nothing again and finally I run it using Command Prompt(admin) and it still dont work Link to post Share on other sites More sharing options...
Valinorum Posted August 28, 2017 ID:1157780 Share Posted August 28, 2017 Step #1 Run Malwarebytes' Anti-Rootkit Please download Malwarebytes Anti-Rootkit from here and extract the content to your Desktop.Update the program if asked. In the Scan System option check all the boxes and click on Scan. Click on Cleanup button after the scan and wait patiently. Reboot the computer if asked. After the clean-up process; locate two logs in the mbar folder namely--mbar-log-scan-date.txt; and system-log.txt Copy and paste the contents of the log in your next reply. Link to post Share on other sites More sharing options...
falconluver Posted September 3, 2017 Author ID:1159997 Share Posted September 3, 2017 here it is system-log.txt mbar-log-2017-08-31 (17-51-45).txt Link to post Share on other sites More sharing options...
Valinorum Posted September 9, 2017 ID:1161952 Share Posted September 9, 2017 Try running MBAM now. Link to post Share on other sites More sharing options...
falconluver Posted September 14, 2017 Author ID:1163478 Share Posted September 14, 2017 ran it then im good now(I think) cleared out like, 25 malwares?? or prabably just files that is acting strange or what sped up my laptop tho, still waiting for clearance bcoz I ran a scan with free premium and it said im clear Link to post Share on other sites More sharing options...
Valinorum Posted September 17, 2017 ID:1164321 Share Posted September 17, 2017 Can I see a fresh set of FRST logs before I give you the "all clear" sign? Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted September 26, 2017 Root Admin ID:1167265 Share Posted September 26, 2017 Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts