MrHappyGoLucky12

I'm going to reset browsers and try SystemLook.

I do use WordPress, and I contacted PressCoders, the company i buy my themes from, and they said, "I've not seen those files before so can't say for sure. If in doubt I would Google it and see if anything flags up."

Hang on; you're giving me too many tasks at once. I'm still on the ESET Online Scan. I made a big mistake. I ran it but skipped one of your directions: Ensure Remove found threats is unchecked.So, it did remove the threats it found. The file log is below. Luckily, I use SyncToy regularly to backup my files to a NAS. Would you recommend I get my deleted files re-established/synced again before we continue? Do any of the files below look malicious? I think they are all legit. E:\Music\Solo Downloader__3687_i868202625_il5993467.exe a variant of Win32/Amonetize.AW potentially unwa

I don't have to backup Chrome Bookmarks, do I? What about Chrome extensions? https://support.google.com/chrome/answer/3296214?hl=en . I don't ever use IE so I don't care about it.

Did you see this? https://forums.malwarebytes.org/index.php?/topic/163117-removal-instructions-for-startpoint/

It's not displayed in the tray, but just shows in the Notification Area Icons settings in Control Panel like in the original picture.

I didn't try your post above, but both items are still in the notifications area like the original image I posted.

# AdwCleaner v4.110 - Logfile created 09/02/2015 at 17:20:56 # Updated 05/02/2015 by Xplode # Database : 2015-02-09.1 [server] # Operating system : Windows 8.1 (x64) # Username : MrHappyGoLucky12 - JOHN-PC-VAIO # Running from : C:\Users\MrHappyGoLucky12\Desktop\AdwCleaner.exe # Option : Cleaning ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\Users\MrHappyGoLucky12\AppData\Local\StartPoint ***** [ Scheduled tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKCU\Software\Classes\keepmysearch K

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 08-02-2015 Ran by MrHappyGoLucky12 at 2015-02-09 15:24:22 Run:1 Running from C:\Users\MrHappyGoLucky12\Desktop Loaded Profiles: MrHappyGoLucky12 (Available profiles: MrHappyGoLucky12) Boot Mode: Normal ============================================== Content of fixlist: ***************** start CloseProcesses: SearchScopes: HKU\S-1-5-21-770957529-1316470831-3961421521-1001 -> {C125A386-E11C-446D-94D8-25011520D962} URL = http://search.strtpo...archTerms}&r=25 Task: {6EB2B437-ECFC-4929-912D-B1A7E361AF3C

Malwarebytes Anti-Malware www.malwarebytes.org Update, 2/9/2015 3:35:51 PM, SYSTEM, JOHN-PC-VAIO, Manual, Malware Database, 2015.2.7.3, 2015.2.9.9, Scan, 2/9/2015 3:58:23 PM, SYSTEM, JOHN-PC-VAIO, Manual, Start:2/9/2015 3:36:01 PM, Duration:22 min 22 sec, Threat Scan, Completed, 0 Malware Detections, 0 Non-Malware Detections, (end)

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-02-2015 Ran by MrHappyGoLucky12 at 2015-02-09 11:28:38 Running from C:\Users\MrHappyGoLucky12\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Progra

I'm not really having any issues; I just don't want unknown icons in my system tray. They just recently appeared; I check it regularly. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-02-2015 Ran by MrHappyGoLucky12 (administrator) on JOHN-PC-VAIO on 09-02-2015 11:27:50 Running from C:\Users\MrHappyGoLucky12\Desktop Loaded Profiles: MrHappyGoLucky12 (Available profiles: MrHappyGoLucky12) Platform: Windows 8.1 (X64) OS Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan

What are these two suspicious things? I can't find too much about them and they aren't in the Add/Remove Programs. http://s3.postimg.org/xe44g41mr/Untitled.png I used: CCleaner Malware Bytes Anti Malware Spybot Search & Destroy Super Anti Spyware Bit Defender F-Secure Kaspersky Panda Activescan Trend Micro Housecall and they are still there. I got a HJT and Spybot log. It won't let me post the Spybot log here because it is too long, and when I hit POST, it takes minutes and then gives me a fatal error message. But here is the HJT log: Logfile of Spybot 2.4.40.

Doing it right now. And posting in the HaveIBeenHijacked forum.

OK, I used: CCleaner Malware Bytes Anti Malware Spybot Search & Destroy Super Anti Spyware Bit Defender F-Secure Kaspersky Panda Activescan Trend Micro Housecall and they are still there. I got a HJT and Spybot log.