Hello. I was trying to rename folders in my Steam directory tonight, and it would not allow me to do so. It kept saying this program is in use by another program. I tried different folders and they all said the same thing. (this was after a fresh boot, and also a reboot as well)
So I ran Malwarebytes, and it found a few things containing the name "DMR_72"
After malwarebytes requested to reset in order to remove these items, the system froze in the reset screen.
This PC has Win 10 Home 64-bit. I wondering what this might be, and how serious it is, and mainly, how to get rid of it. Also thank you in advance for your time and assistance.
Here are my logs:
# AdwCleaner v6.045 - Logfile created 07/04/2017 at 03:04:19
# Updated on 28/03/2017 by Malwarebytes
# Database : 2017-04-06.1 [Server]
# Operating System : Windows 10 Home (X64)
# Username : Ty - DESKTOP-3MSCKH3
# Running from : C:\Users\Ty\Downloads\adwcleaner_6.045.exe
# Mode: Scan
# Support :
https://www.malwarebytes.com/support***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
Folder Found: C:\ProgramData\7123ed67-e5b9-4e86-8b46-0c748f950470
Folder Found: C:\ProgramData\cb15a1f9-9e36-4b79-94b6-0a2851eb4b09
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious keys found.
***** [ Shortcuts ] *****
No infected shortcut found.
***** [ Scheduled Tasks ] *****
No malicious task found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Web browsers ] *****
No malicious Firefox based browser items found.
Chrome pref Found: [C:\Users\Ty\AppData\Local\Google\Chrome\User Data\Default\Web data] - ask.com
Chrome pref Found: [C:\Users\Ty\AppData\Local\Google\Chrome\User Data\Default\Web data] - aol.com
*************************
C:\AdwCleaner\AdwCleaner[S0].txt - [1250 Bytes] - [07/04/2017 03:04:19]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1323 Bytes] ##########
_______________________________________
_______________________________________
____
Malwarebytes
www.malwarebytes.com-Log Details-
Scan Date: 4/7/17
Scan Time: 2:24 AM
Logfile: Report.txt
Administrator: Yes
-Software Information-
Version: 3.0.6.1469
Components Version: 1.0.75
Update Package Version: 1.0.1678
License: Trial
-System Information-
OS: Windows 10
CPU: x64
File System: NTFS
User: DESKTOP-3MSCKH3\Ty
-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 354857
Time Elapsed: 3 min, 8 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 0
(No malicious items detected)
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 4
Adware.ChinAd, C:\Users\Ty\AppData\Local\Temp\DMR\Downloads\3676090eded622c6bec547ed78bdf6d1\c37ff6dd7df8841c70cfbd03737e777f, Quarantined, [1044], [375557],1.0.1678
Adware.ChinAd, C:\Users\Ty\AppData\Local\Temp\DMR\Downloads\3676090eded622c6bec547ed78bdf6d1, Quarantined, [1044], [375557],1.0.1678
Adware.ChinAd, C:\Users\Ty\AppData\Local\Temp\DMR\Downloads, Quarantined, [1044], [375557],1.0.1678
Adware.ChinAd, C:\USERS\TY\APPDATA\LOCAL\TEMP\DMR, Quarantined, [1044], [375557],1.0.1678
File: 3
PUP.Optional.DownloadSponsor, C:\USERS\TY\APPDATA\LOCAL\TEMP\DMR\DMR_72.EXE, Quarantined, [467], [369859],1.0.1678
Adware.ChinAd, C:\USERS\TY\APPDATA\LOCAL\TEMP\DMR\PMFOBQRXILDMQXYX.DAT, Quarantined, [1044], [375557],1.0.1678
Adware.ChinAd, C:\Users\Ty\AppData\Local\Temp\DMR\Downloads\3676090eded622c6bec547ed78bdf6d1\c37ff6dd7df8841c70cfbd03737e777f\qbittorrent_3.3.10_setup.exe, Quarantined, [1044], [375557],1.0.1678
Physical Sector: 0
(No malicious items detected)
(end)
_______________________________________
_______________________________________
____
Results of screen317's Security Check version 1.014 --- 12/23/15
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````[/u]
Windows Firewall Enabled!
Windows Defender
WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:`````````[/u]
Google Chrome (57.0.2987.133)
Google Chrome (SetupMetrics...)
````````Process Check: objlist.exe by Laurent````````[/u]
Windows Defender MSMpEng.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamtray.exe
Windows Defender MSASCuiL.exe
Windows Defender MpCmdRun.exe
`````````````````System Health check`````````````````[/u]
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````[/u]