Thank you for your post. My name is Phil, and if you would permit me, I would like to address you by your first name, since we will be working together.
First off, you did not "break" or "bend" any rules. You didn't post your HJT log in this Forum, so there is no issue there. The reason for the prohibition of posting HJT, FRST, Zoek, etc., logs in this Forum is for your protection. Bleeping Computer has the philosophy of the medical profession, which is, above all, "do no harm." There are lots of well-intentioned folks who might want to help you with the advanced scanner logs, but who do not have the requisite training in the use of those tools. That leads to the possibility that your computer could be seriously compromised by following instructions that might be given to you. The Virus, Trojan, Spyware and Malware Removal Logs Forum is closely monitored to ensure that only qualified Malware Removal Specialists are permitted to post there, for your protection and the protection of other users with malware issues.
Personally, I am in training to qualify for the Bleeping Computer Malware Response Team (MRT). I started training back in April, but it will be many more months of intense training before I can expect to be designated as an MRT. There is a lot to learn. In fact, I had to just about complete the Junior Level training (there are three levels: Sophomore, Junior, and Senior) before I was allowed, by Bleeping Computer policy, to request permission to respond in this Forum. That's because they want to ensure that anyone "endorsed" by Bleeping Computer as a staff member, has the requisite skills with the less-advanced scanning tools.
Quite a digression, I know, but I just wanted to explain to you the rationale behind the approach here at Bleeping Computer. And yes, if during the process of running the less advanced scans, I find evidence that your computer may be seriously compromised, I will advise you to post in the Virus, Trojan, Spyware and Malware Removal Logs Forum, with a link to this thread, so that the MRT member who responds to your post is aware of what has already been done. The MRT member will then pick it up from there and go forward to disinfect your computer.
OK, so the first thing that I would like you to do for us is to run an ESET online scan for viruses.
2. ESET Online Scanner using Internet Explorer:
Note 1: These instructions are for Internet Explorer only! If you're using Chrome or Firefox, you will need to download and install the ESET Smart Installer tool before it can scan. See instructions here.
Note 2: You will need to disable your currently installed Anti-Virus, how to do so can be found here.
*Click this link to open ESET OnlineScan.
* When prompted allow the Add-On/Active X to install.
* In the new window that opens, tic the radio button next to Enable detection of potentially unwanted applications.
* Then click "Advanced settings", and make sure there is a checkmark next to only the following items (uncheck everything else):
- Remove found threats
- Scan archives
- Scan for potentially unsafe applications
- Enable Anti-Stealth technology
*Then click the button and ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
*When the scan completes, click List Found Threats (only if anything is found).
*Then click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
*Click , then click to exit ESET Online Scanner.
Don't forget to re-enable your antivirus when finished!
We are going to follow that up with a Malwarebytes Anti-Malware scan.
2. Download and install Malwarebytes Anti-Malware:
Please download Malwarebytes Anti-Malware to your desktop.
- Double-click mbam-setup-2.2.*.****.exe and follow the prompts to install the program ( * = program version numbers may vary - always get the latest version).
- At the end, be sure a checkmark is placed next to the following:
- Launch Malwarebytes Anti-Malware
- A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
- Click Finish.
- On the Dashboard, click the 'Update Now >>' link
- After the update completes, click the 'Scan Now >>' button.
- Or, on the Dashboard, click the Scan Now >> button.
- If an update is available, click the Update Now button.
- A Threat Scan will begin.
- When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
- In most cases, a restart will be required.
- Wait for the prompt to restart the computer to appear, then click on Yes.
- After the restart once you are back at your desktop, open MBAM once more.
- Click on the History tab > Application Logs.
- Double click on the scan log which shows the Date and time of the scan just performed.
- Click 'Copy to Clipboard
- Paste the contents of the clipboard into your next reply.
So, what I will need from you is to paste the both the ESET and Malwarebytes Anti-Malware scan logs into your next reply, and we will go from there.
If I don't reply within 24 hours, please send me a personal message.
Have a great day.