I'm good at setting up computers but not at computer security beyond purchasing and installing programs.
Here's a list of security programs I've purchased full licenses for: Faronics Deep Freeze & Anti-Executable, Sandboxie, Comodo, Hitman Pro, Malwarebytes, Eset Internet Security, Webroot, Dr Web, Bitdefender, BeeThink Anti-DDoS Guardian, Zemana, SpyShelter two-way firewall, lots of VPNs, Windows hardening, even a tunnel to Chicago through SharkTech with 100GBPs of DDoS mitigation, etc. I've purchased physical firewalls such as DOJO, RATtrap and an enterprise SonicWall router. I've tried Windows 7, Windows 10, MacOS, Linux and ChromeOS. Dozens of hard drive wipes, UEFI's flashed, OS reinstalls as well as 10 brand new hardware setups which include new computer, modem, router, keyboard, mouse, no old USB flash drives etc. The problem always returns and I can't shake it so this tells me I'm being targeted. I don't use pirated programs or bittorrent as those often have backdoors.
I've had my internet taken down, all my gmails hacked and passwords changed, social media and bank account hacked, lots of strange logs and temp files appearing and disappearing and most of all, GMER crashing the computer with malware found. I've had my Windows folder grow to 60GB+ and I've had Windows.old magically appear on brand new computers (I know what normally causes Windows.old and I didn't do that). Sometimes Windows.old disappears as well.
Currently the Internet works but when I stream live it causes glitches and viewers don't register and are unable to interact in my broadcast. This affects my income. These same symptoms have also happened to two of my close friends who are also streamers. I'm very willing to pay for professional help, I just don't know who to contact who could figure out this mess. I know this isn't typical malware because brand new everything should have fixed that. Brand new hardware multiple times definitely should have fixed it. I've spent thousands of dollars on this and almost as though it's automatic, the problem returns, sometimes as soon as I take it online.
At this point I'm not sure where infection happens or how to prevent it.
I'm attaching a GMER log that I stopped part way through because at some point it will crash and I lose it. I ran the scan and let it go for a minute then pressed stop. I will provide any other logs requested.
Thank you for your time.
I've seen this domain x.s s2.us (I put a space between the x.s and s2.us so it doesn't show up in a google search) appear in my Anti-DDoS Guardian logs. If you look at this link with virustotal and keep pressing more, it shows a lot of malicious hits. Anti-DDoS Guardian also shows how my local IP gets reversed with the remote IP and I can't block it or it kicks me offline.
https://www.virustotal.com/#/domain/x.s s2.us (also remove space between x.s and s2.us)