Not 100 percent sure? Odd things are happening.
First of all yesterday I might have made a mistake according to my friend. I got on FireFox an 'urgent' tab open up about a Java update is needed. I ran it, the file was FIREFOX-PATCH.JS. Called my friend and he got on my PC and couldn't locate anything from it or the file.
Today I ran MalwareBytes and the scan said I was AGAIN infected. I selected FIX... ran scan again after a re-boot, system clean. Did a SHUTDOWN and boot, again clean.
However some stuff HAS returned in the ca0f3 folder?
===========================
C:\Users\Patti\AppData\Local\ca0f3>dir
Volume in drive C is OS
Volume Serial Number is F641-BD4C
Directory of C:\Users\Patti\AppData\Local\ca0f3
08/13/2016 09:25 AM <DIR> .
08/13/2016 09:25 AM <DIR> ..
08/13/2016 09:24 AM 42,064 a4bb8.73fb72
08/13/2016 11:00 AM 1,347 ba3db.lnk
2 File(s) 43,411 bytes
2 Dir(s) 943,920,775,168 bytes free
====================
The lnk file points to C:\Users\Patti\AppData\Local\ca0f3\a52cc.bat which doesn't exist (although it is in my Quarantine folder)?
Operational wise I don't see any degradation nor signs of any malware running. Hijack Hunter didn't seem to see anything either? See log attached.
What do you think?
Tried some other utilities, rootkit scanners, nothing. Hitman Pro found some stuff, but not the infection.
logs_8-13-2016_11_00_46_AM.log