Adpeak and Scorpion

[zia]

Yes, I've got it!

attachtxt.zipHere's the DDS:

 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16520
Run by Jan's at 10:05:31 on 2013-11-28
.
============== Running Processes ================
.
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Users\Jan's\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe
C:\Windows\SysWOW64\nlssrv32.exe
C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe
C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.287\SSScheduler.exe
C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files (x86)\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
C:\Program Files (x86)\AirPort\APAgent.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Jan's\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Windows\SysWOW64\svchost.exe -k Akamai
.
============== Pseudo HJT Report ===============
.

uProxyOverride = 127.0.0.1;*.local;127.0.0.1:9421;<local>
uURLSearchHooks: {37483b40-c254-4a72-bda4-22ee90182c1e} - <orphaned>
mWinlogon: Userinit = userinit.exe,
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\CoIEPlg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\IPS\IPSBHO.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\CoIEPlg.dll
uRun: [ctfmon.exe] C:\Windows\System32\ctfmon.exe
uRun: [Akamai NetSession Interface] "C:\Users\Jan's\AppData\Local\Akamai\netsession_win.exe"
uRun: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
uRun: [DellSystemDetect] C:\Users\Jan's\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
uRun: [GoogleChromeAutoLaunch_DD8D71BFCC2C31645A637A75D6D28035] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
mRun: [MaxMenuMgr] "C:\Program Files (x86)\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [AirPort Base Station Agent] "C:\Program Files (x86)\AirPort\APAgent.exe"
mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:0
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
LSP: C:\Windows\System32\AdpeakProxy.dll
Trusted Zone: dell.com














TCP: NameServer = 10.0.1.1
TCP: Interfaces\{2FC11250-AD01-4076-9247-36E4756844E6} : DHCPNameServer = 10.0.1.1
TCP: Interfaces\{8C9BCD22-BBFD-44A8-A23D-0D7189C3EA1C} : DHCPNameServer = 10.0.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= c:\progra~3\browse~1\25911~1.18\{c16c1~1\mngr.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mWinlogon: Userinit = userinit.exe,
x64-BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\CoIEPlg.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\CoIEPlg.dll
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll



x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\Windows\System32\ieudinit.exe
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Jan's\AppData\Roaming\Mozilla\Firefox\Profiles\hg35nrp1.default-1357068991897\

FF - prefs.js: browser.startup.homepage - about:home
FF - plugin: C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: C:\Program Files (x86)\Download Manager\npfpdlm.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Program Files\Microsoft\Web Platform Installer\NPWPIDetector.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
.
============= SERVICES / DRIVERS ===============
.
R? BBSvc;Bing Bar Update Service
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? colormunki;colormunki
R? ColorMunkiService;X-Rite Device ColorMunki
R? cpuz132;cpuz132
R? FLEXnet Licensing Service 64;FLEXnet Licensing Service 64
R? MsDepSvc;Web Deployment Agent Service
R? PCDSRVC{D3412D80-CF3B4A27-06020200}_0;PCDSRVC{D3412D80-CF3B4A27-06020200}_0 - PCDR Kernel Mode Service Helper Driver
R? SkypeUpdate;Skype Updater
R? SwitchBoard;Adobe SwitchBoard
R? TsUsbFlt;TsUsbFlt
R? USBAAPL64;Apple Mobile USB Driver
R? WatAdminSvc;Windows Activation Technologies Service
R? xritedeviced;X-Rite Device Manager
S? Akamai;Akamai NetSession Interface
S? AMD External Events Utility;AMD External Events Utility
S? AtiHDAudioService;AMD Function Driver for HD Audio Service
S? BBUpdate;BBUpdate
S? BHDrvx64;BHDrvx64
S? ccSet_N360;N360 Settings Manager
S? DockLoginService;Dock Login Service
S? EraserUtilRebootDrv;EraserUtilRebootDrv
S? FreeAgentGoNext Service;Seagate Service
S? IDSVia64;IDSVia64
S? johci;JMicron 1394 Filter Driver
S? Level Quality Watcher;Level Quality Watcher
S? MBAMProtector;MBAMProtector
S? MBAMScheduler;MBAMScheduler
S? MBAMService;MBAMService
S? N360;Norton 360
S? nlscc;Nalpeiron X64 Service
S? nlsX86cc;Nalpeiron Licensing Service
S? PxHlpa64;PxHlpa64
S? RichVideo64;Cyberlink RichVideo64 Service(CRVS)
S? RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader
S? RTL8167;Realtek 8167 NT Driver
S? SymDS;Symantec Data Store
S? SymEFA;Symantec Extended File Attributes
S? SymIRON;Symantec Iron Driver
S? SymNetS;Symantec Network Security WFP Driver
S? TabletServicePen;TabletServicePen
S? TabletServiceWacom;TabletServiceWacom
S? wacmoumonitor;Wacom Mode Helper
S? WsAudio_DeviceS(1);WsAudio_DeviceS(1)
S? WsAudio_DeviceS(2);WsAudio_DeviceS(2)
S? WsAudio_DeviceS(3);WsAudio_DeviceS(3)
S? WsAudio_DeviceS(4);WsAudio_DeviceS(4)
S? WsAudio_DeviceS(5);WsAudio_DeviceS(5)
S? ZAtheros Wlan Agent;ZAtheros Wlan Agent
.
=============== Created Last 30 ================
.
2013-11-28 17:36:34 -------- d-----w- C:\Program Files\CCleaner
2013-11-28 16:43:38 -------- d-----w- C:\Users\Jan's\AppData\Local\{BFCDDA66-D7B3-4321-A437-F4E214027521}
2013-11-28 04:43:12 -------- d-----w- C:\Users\Jan's\AppData\Local\{A47303A9-51F1-4DCC-8F07-9DD90A95E59E}
2013-11-27 20:54:28 439296 ----a-w- C:\Windows\System32\AdpeakProxy64.dll
2013-11-27 20:54:25 338944 ----a-w- C:\Windows\SysWow64\AdpeakProxy.dll
2013-11-27 20:54:19 -------- d-----w- C:\Program Files\ScorpionSaver Services
2013-11-27 03:36:55 -------- d-----w- C:\Users\Jan's\AppData\Local\{9CB185D4-D536-4A18-8337-19A47D1A90F7}
2013-11-26 20:52:09 -------- d-----w- C:\Program Files\Level Quality Watcher
2013-11-26 14:03:20 -------- d-----w- C:\Users\Jan's\AppData\Local\{D1A860AF-5270-44A3-B660-D4D0AC289F13}
2013-11-25 17:27:22 -------- d-----w- C:\Users\Jan's\AppData\Local\{7030E691-7158-46B1-A7FF-7EA38B05E769}
2013-11-25 05:12:26 -------- d-----w- C:\Users\Jan's\AppData\Local\{C9E69AC4-86F4-441C-BB70-B0050575C22C}
2013-11-24 15:29:06 -------- d-----w- C:\Program Files (x86)\iVIDI.org plugin
2013-11-24 15:29:02 -------- d-----w- C:\Program Files (x86)\Notificatoin
2013-11-24 13:46:52 -------- d-----w- C:\Users\Jan's\AppData\Local\{1B692489-EE4D-4719-ABC9-3B45E9D2D8C3}
2013-11-23 17:53:58 -------- d-----w- C:\Users\Jan's\AppData\Local\{230507F4-DCE2-437D-A864-50FB4C55B4ED}
2013-11-23 05:04:48 -------- d-----w- C:\Users\Jan's\AppData\Roaming\com.adobe.amp
2013-11-23 04:44:43 -------- d-----w- C:\Users\Jan's\AppData\Local\{F5C903E0-F4BA-4F09-B8D2-B94451969D52}
2013-11-22 16:44:29 -------- d-----w- C:\Users\Jan's\AppData\Local\{89D77BF4-7A31-4B84-BD76-DF8B23C3064F}
2013-11-22 04:44:15 -------- d-----w- C:\Users\Jan's\AppData\Local\{85A3A330-4466-432B-A3E5-A0CD54D96BF7}
2013-11-21 13:37:56 -------- d-----w- C:\Users\Jan's\AppData\Local\{275B6C22-6EC2-49F8-A614-0830DF204B4F}
2013-11-21 01:35:33 -------- d-----w- C:\Users\Jan's\AppData\Local\{D54B4522-DFE6-4A77-BF1C-2555A68D9394}
2013-11-20 13:34:34 -------- d-----w- C:\Users\Jan's\AppData\Local\{F10F23B9-A593-4C21-95B6-93063AE510E8}
2013-11-19 17:37:19 -------- d-----w- C:\Users\Jan's\AppData\Local\{8305EBB3-3F45-4EFE-95CA-98374A563EE9}
2013-11-19 17:35:40 -------- d-----w- C:\Users\Jan's\AppData\Local\{24A7B5E6-4740-405B-A9D1-6B2F6C41A0E6}
2013-11-19 17:22:48 -------- d-----w- C:\Users\Jan's\AppData\Local\{3DF5EAD1-AD59-4598-803D-9B66A2B11255}
2013-11-19 03:44:46 -------- d-----w- C:\Users\Jan's\AppData\Local\{B7E1BBA2-A3A1-47AC-A324-31D1B138CEAD}
2013-11-18 18:19:04 -------- d-----w- C:\ProgramData\Oracle
2013-11-18 14:12:00 -------- d-----w- C:\Users\Jan's\AppData\Local\{9FA72EBB-5DA9-4E3B-A303-02E3C58D12FA}
2013-11-15 17:02:22 -------- d-----w- C:\Users\Jan's\AppData\Local\{216F0EF1-DD5B-47E1-B056-263D2B8F7409}
2013-11-15 05:00:23 -------- d-----w- C:\Users\Jan's\AppData\Local\{64404723-B180-48FB-ABBE-ECB04E6F94EA}
2013-11-15 04:58:32 -------- d-----w- C:\Users\Jan's\AppData\Local\{BB3DB5CB-1ECE-4377-BB99-46B9A6FFCF58}
2013-11-15 04:55:15 -------- d-----w- C:\Users\Jan's\AppData\Local\{7EAF95A8-CAA9-4EEA-AF49-F364F336FFDF}
2013-11-14 23:34:52 -------- d-----w- C:\Users\Jan's\AppData\Local\{20BB958C-B771-48BA-A5F2-F6BF2EFCC6B9}
2013-11-14 19:34:38 -------- d-----w- C:\Users\Jan's\AppData\Local\{1A45D05C-F10E-40DE-A2A9-2368810A40CE}
2013-11-14 04:24:31 -------- d-----w- C:\Users\Jan's\AppData\Local\{CA2FA78E-E701-4BB9-85A9-5AAD9BCB74AD}
2013-11-14 01:48:03 858200 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\srtsp64.sys
2013-11-14 01:48:03 590936 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\symnets.sys
2013-11-14 01:48:03 493656 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\SymDS64.sys
2013-11-14 01:48:03 36952 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\srtspx64.sys
2013-11-14 01:48:03 264280 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\Ironx64.sys
2013-11-14 01:48:03 23568 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\SymELAM.sys
2013-11-14 01:48:03 162392 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\ccSetx64.sys
2013-11-14 01:48:03 1147480 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\SymEFA64.sys
2013-11-14 01:47:55 -------- d-----w- C:\Windows\System32\drivers\N360x64\1501000.012
2013-11-13 13:31:37 -------- d-----w- C:\Users\Jan's\AppData\Local\{7F18AAD3-DBF1-4F3D-B80C-189A3D2C9DCD}
2013-11-13 04:37:40 -------- d-----w- C:\Users\Jan's\AppData\Local\{3B89C256-C0E4-42BD-A34D-EDF183B5D229}
2013-11-12 13:22:32 -------- d-----w- C:\Users\Jan's\AppData\Local\{1DA342EC-D32E-487B-B697-2F76A1EABACB}
2013-11-11 23:33:07 -------- d-----w- C:\Users\Jan's\AppData\Local\{0DEF8585-CCCF-4DB0-B84F-A11BD55D27E0}
2013-11-11 05:24:51 -------- d-----w- C:\Users\Jan's\AppData\Local\{9B3C4500-EABA-4277-A5FF-681818A1ADDD}
2013-11-10 04:49:31 -------- d-----w- C:\Users\Jan's\AppData\Local\{6C5C3A44-DF2B-406F-B03F-D5EB800E908C}
2013-11-09 13:28:41 -------- d-----w- C:\Users\Jan's\AppData\Local\{8FCF44F8-3E5B-4F24-A8D8-4C1D63C574CD}
2013-11-08 18:01:25 -------- d-----w- C:\Users\Jan's\AppData\Local\{141A6011-2498-473A-AE22-A1E1A6FDDCE0}
2013-11-08 04:05:09 -------- d-----w- C:\Users\Jan's\AppData\Local\{9940F4B8-6B0F-4D3E-A76D-ACA39A34DD78}
2013-11-07 13:22:29 -------- d-----w- C:\Users\Jan's\AppData\Local\{6A3B073B-1A4B-4649-9CD8-1CC53D238232}
2013-11-06 19:44:12 -------- d-----w- C:\Users\Jan's\AppData\Local\{9A1FCE2E-D538-46A7-8A58-2AC0112FD623}
2013-11-06 03:56:19 -------- d-----w- C:\Users\Jan's\AppData\Local\{B12036DF-D058-4A9D-B9A2-5D3537D77947}
2013-11-05 13:58:12 -------- d-----w- C:\Users\Jan's\AppData\Local\{99D89A2F-BD95-4BD7-AAE0-2AF2B0C560E8}
2013-11-05 01:56:09 -------- d-----w- C:\Users\Jan's\AppData\Local\{004EDAA7-DB66-46F0-A0A6-68FE7FFCB2E6}
2013-11-04 13:54:31 -------- d-----w- C:\Users\Jan's\AppData\Local\{A49B40F8-CC07-4F33-8FAB-C24266EDC1DA}
2013-11-04 01:52:31 -------- d-----w- C:\Users\Jan's\AppData\Local\{3CC580D0-7EC5-4C19-9EF7-1F48DAD7A12F}
2013-11-03 13:47:57 -------- d-----w- C:\Users\Jan's\AppData\Local\{9E109369-427D-46B3-92D9-E03FB026BB08}
2013-11-02 18:02:07 -------- d-----w- C:\Users\Jan's\AppData\Local\{FB81AE94-CDFE-4425-956E-0C65004BAA8E}
2013-11-02 01:27:00 -------- d-----w- C:\Users\Jan's\AppData\Local\{72CE88F6-A4FA-458E-9161-E3A2D6005D82}
2013-11-01 13:24:58 -------- d-----w- C:\Users\Jan's\AppData\Local\{CEC3A135-EE2B-4142-A8FF-4C93933D2358}
2013-11-01 00:07:25 -------- d-----w- C:\Users\Jan's\AppData\Local\{050E0C05-7A00-454B-B16E-A40069CBAFF0}
2013-10-31 17:08:59 -------- d-----w- C:\Users\Jan's\AppData\Local\{7FE6E8E9-4FF3-4085-9517-5490F5E7753A}
2013-10-31 16:53:42 -------- d-----w- C:\Users\Jan's\AppData\Local\{E93661BC-9F9C-41E2-BEAB-41FDE921CA61}
2013-10-31 16:52:22 -------- d-----w- C:\Users\Jan's\AppData\Local\{942DCC99-0F88-4626-9A70-8D2A7F3D588C}
2013-10-31 03:10:19 -------- d-----w- C:\Users\Jan's\AppData\Local\{37D98C9C-830F-401F-9303-D2AAB01D7C79}
2013-10-30 13:38:28 -------- d-----w- C:\Users\Jan's\AppData\Local\{2FA3F888-C32F-48FF-A9FB-3A342DA899A1}
.
==================== Find3M  ====================
.
2013-11-26 21:22:40 627600 ----a-w- C:\Windows\System32\deployJava1.dll
2013-11-26 14:02:08 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-26 14:02:08 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-11-14 01:48:36 177752 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2013-10-13 14:55:42 2334720 ----a-w- C:\Windows\System32\jscript9.dll
2013-10-13 14:47:43 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-10-13 14:46:53 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-10-13 14:42:36 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-10-13 14:42:11 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-10-13 14:35:12 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-10-13 09:48:06 1806848 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-10-13 09:35:52 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-10-13 09:35:38 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-10-13 09:30:14 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-10-13 09:29:02 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-10-13 09:25:39 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2013-10-05 20:25:35 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2013-10-05 19:57:25 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-10-04 02:28:31 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2013-10-04 02:25:17 197120 ----a-w- C:\Windows\System32\credui.dll
2013-10-04 02:24:49 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-10-04 01:58:50 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56:25 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2013-10-04 01:56:00 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2013-10-03 02:23:48 404480 ----a-w- C:\Windows\System32\gdi32.dll
2013-10-03 02:00:44 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2013-09-28 01:09:10 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-09-25 02:26:40 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2013-09-25 02:26:40 154560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2013-09-25 02:23:33 28672 ----a-w- C:\Windows\System32\sspisrv.dll
2013-09-25 02:23:33 135680 ----a-w- C:\Windows\System32\sspicli.dll
2013-09-25 02:23:01 28160 ----a-w- C:\Windows\System32\secur32.dll
2013-09-25 02:22:59 340992 ----a-w- C:\Windows\System32\schannel.dll
2013-09-25 02:21:50 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2013-09-25 02:21:07 1447936 ----a-w- C:\Windows\System32\lsasrv.dll
2013-09-25 01:58:17 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2013-09-25 01:57:26 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2013-09-25 01:57:24 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
2013-09-25 01:56:42 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2013-09-25 01:03:24 30720 ----a-w- C:\Windows\System32\lsass.exe
2013-09-10 02:47:43 78936 ----a-r- C:\Windows\System32\drivers\SymIMV.sys
2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll
2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2013-09-04 12:12:11 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-09-04 12:11:51 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-09-04 12:11:49 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-09-04 12:11:43 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-09-04 12:11:43 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-09-04 12:11:42 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2013-09-04 12:11:40 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
.
============= FINISH: 10:06:04.30 ===============
 

[MrCharlie]

Welcome to the forum, give this a try:

 

Lets clean out any adware/spyware now: (this will require a reboot so save all your work)

Please download AdwCleaner by Xplode and save to your Desktop.

Make sure you click on download buttons that look similar to this, not "sponsored ad links":

• Double click on AdwCleaner.exe to run the tool.
  Vista/Windows 7/8 users right-click and select Run As Administrator
• Click on the Scan button.
• AdwCleaner will begin...be patient as the scan may take some time to complete.
• When it's done you'll see: Pending: Please uncheck elements you don't want removed.
• Now click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
• Look over the log especially under Files/Folders for any program you want to save.
• If there's a program you may want to save, just uncheck it from AdwCleaner.
• If you're not sure, post the log for review. (all items found are adware/spyware/foistware)
• If you're ready to clean it all up.....click the Clean button.
• After rebooting, a logfile report (AdwCleaner[s0].txt) will open automatically.
• Copy and paste the contents of that logfile in your next reply.
• A copy of that logfile will also be saved in the C:\AdwCleaner folder.
• Items that are deleted are moved to the Quarantine Folder: C:\AdwCleaner\Quarantine
• To restore an item that has been deleted:
• Go to Tools > Quarantine Manager > check what you want restored > now click on Restore.

Then..................

Open up Malwarebytes > Settings Tab > Scanner Settings > Under action for PUP > Select: Show in Results List and Check for removal.

Please Update and run a Quick Scan with Malwarebytes Anti-Malware, post the report.

Make sure that everything is checked, and click Remove Selected.

Last...........

Please download Farbar Recovery Scan Tool and save it to a folder. (use correct version for your system.....Which system am I using?)

Please make sure you click download buttons that look similar to this, not "sponsored ad links":

• Double-click to run it. When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
• The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
• MrC

[Maurice Naggar]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!