The two google toolbars are potentially unwanted , but not necessarily harmful. It looks as though WD already stashed them anyway and ESET found them in the stash - you deleted them thru ESET.
I don't think removing those files caused any harm - WD might have objected and caused some thrashing though.
WD offline failed to boot - let's skip that for now. I suggested WD offline to see if that version of defender also saw D:\...wim...\Win32/Dynamer!ac as a threat. It might answer the question if Defender flagged it and Defender offline did not, since the other scanners you ran did not.
Now about those virus database sites: they probably do list the file, but that's not going to tell you about the file on your system. They are very good reference sites about malware, but the real power comes from you sending the file from your system to them for analysis. Since the file is buried in a windows image (wim) ... let's skip that step too.
I'm more convinced that it is a false positive after doing more reading.
From the link to MS that essenbe provided:
We've automatically analyzed this threat, determined that it's a trojan because of what it does when it gets on a PC, and blocked and removed it from your PC.
Typically, trojans try to do one or all of the following:
- Download and install other malware.
- Use your computer for click fraud.
- Record your keystrokes and the sites you visit.
- Send information about your PC, including usernames and browsing history, to a remote malicious hacker.
- Give a remote malicious hacker access to your PC.
Due to the generic nature of this threat, we are unable to provide specific information on what it does.
That's a fairly generic Technical Information about a trojan.
And over on Microsoft Answers ... false positves:
Win32/Dynamer!ac Search results
But .... there is still a risk that it is not a False positive.
D: is the HP recovery partition - right?
That is probably for the previous version of Windows - you upgraded from Win7 or Win8, is that also correct?
Here's what I would do
1) copy D: to a thumbdrive (16GB sb enough)
2) remove the D: partittion
3) Run a fair set of Malware scanners
I can give you some now and finish up after you decide what to do with D:
Restart your machine in case there are any system operations pending
Click here to download Old Timer-TFC.
>> save the application to your Desktop.
Old Timer-TFC is a standalone application, there is no install.
!!!!! Save your work and close all open windows.
TFC will close ALL open programs including your browser!
Right click, run as administrator TFC
Click the Start button to begin the cleaning up temporary files and folders.
!!!!! Do not work on other things while TFC is running - most applications use some sort of temporary files. Just let TFC run by itself on the machine until it completes.
Restart your machine immediately after TFC completes.
AdwCleaner is a two step process. Scan then Clean
Click here to download AdwCleaner (author: Xplode)
--> save the application to your Desktop.
- Right-click AdwCleaner.exe on your Desktop and select Run As Administrator to run the scanner with full privilege rights.
AdwCleaner is a standalone executable, there is no install.
- Click on the Scan button.
- AdwCleaner begins scanning your system. It might take some time to complete.
- Review the detected objects grouped under each of the tabs.
--> If there is something you KNOW should NOT be cleaned, clear the checkbox next to the object. If you're not sure about an object, paste the scan logfile (AdwCleaner[S#].txt) in a new post for a member to review and advise you.
Otherwise, go to the next step.
- After the scan has finished and you have reviewed the objects to be cleaned, click on the Clean button.
- Answer OK to the close all programs prompt, then follow the onscreen prompts.
- Answer OK to the restart the computer prompt to complete the removal process.
The AdwCleaner log file is opened in your default Text editor when the machine has restarted.
Each time AdwCleaner runs, the log file number [#] is incremented, the highest number is the most recent. There are two log files, one for the scan (AdwCleaner[S#].txt) and one for the clean (AdwCleaner[C#].txt).
Paste the entire clean logfile (AdwCleaner[C#].txt) in your next post.
--> AdwCleaner logs are located in the C:\AdwCleaner folder if you need to reference them again
and finallay (for now)
Malwarebytes Anti-Malware Free - Windows 7 Help Forums