Here is DDS.txt:
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16490
Run by Johnny at 16:51:34 on 2013-06-13
Microsoft Windows 7 Professional 6.1.7601.1.1252.44.1033.18.3067.1852 [GMT 1:00]
.
AV: Norton AntiVirus *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton AntiVirus *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\CISVC.EXE
C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Norton AntiVirus\Engine\20.3.1.22\ccSvcHst.exe
C:\Program Files\Norton Identity Safe\Engine\2013.3.3.19\ccSvcHst.exe
C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Norton AntiVirus\Engine\20.3.1.22\ccSvcHst.exe
C:\Program Files\Norton Identity Safe\Engine\2013.3.3.19\ccSvcHst.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\OEM13Mon.exe
C:\Program Files\Mediafour\MacDrive 8\MacDrive.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k SDRSVC
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://
www.google.co.uk/
uSearch Bar = hxxp://feed.snap.do/?publisher=TightropeYB&dpid=TightropeYB&co=GB&userid=70445231-3f47-4e0f-bd7d-793c71386a5d&searchtype=ds&q={searchTerms}&installDate={installDate}
uSearch Page = hxxp://feed.snap.do/?publisher=TightropeYB&dpid=TightropeYB&co=GB&userid=70445231-3f47-4e0f-bd7d-793c71386a5d&searchtype=ds&q={searchTerms}&installDate={installDate}
uSearchAssistant = hxxp://feed.snap.do/?publisher=TightropeYB&dpid=TightropeYB&co=GB&userid=70445231-3f47-4e0f-bd7d-793c71386a5d&searchtype=ds&q={searchTerms}&installDate={installDate}
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - c:\program files\norton antivirus\engine\20.3.1.22\ips\ipsbho.dll
BHO: Norton Identity Protection: {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - c:\program files\norton identity safe\engine\2013.3.3.19\coieplg.dll
TB: Norton Identity Safe Toolbar: {A13C2648-91D4-4BF3-BC6D-0079707C4389} - c:\program files\norton identity safe\engine\2013.3.3.19\coieplg.dll
TB: Norton Identity Safe Toolbar: {A13C2648-91D4-4bf3-BC6D-0079707C4389} - c:\program files\norton identity safe\engine\2013.3.3.19\coieplg.dll
TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [OEM13Mon.exe] c:\windows\OEM13Mon.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [MacDrive 8 application] "c:\program files\mediafour\macdrive 8\MacDrive.exe"
mRun: [Getting started with MacDrive 8] "c:\program files\mediafour\macdrive 8\MDGetStarted.exe" /auto
mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe"
mRun: [AdobeCS5ServiceManager] "c:\program files\common files\adobe\cs5servicemanager\CS5ServiceManager.exe" -launchedbylogin
mRun: [SwitchBoard] c:\program files\common files\adobe\switchboard\SwitchBoard.exe
mRun: [HTC Sync Loader] "c:\program files\htc\htc sync 3.0\htcUPCTLoader.exe" -startup
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{675662F3-AC92-49A4-A821-0BD687716F7D} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{675662F3-AC92-49A4-A821-0BD687716F7D}\75623573 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{675662F3-AC92-49A4-A821-0BD687716F7D}\8416272796370284F6F6C6560275946494 : DHCPNameServer = 172.16.1.1 208.67.222.222 8.8.8.8
TCP: Interfaces\{88C165ED-2F75-46A3-8190-761A16E42049} : DHCPNameServer = 192.168.1.254
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 MDFSYSNT;MacDrive file system driver;c:\windows\system32\drivers\MDFSYSNT.SYS [2010-10-7 234160]
R0 MDPMGRNT;MacDrive partition driver;c:\windows\system32\drivers\MDPMGRNT.SYS [2010-5-12 29792]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nav\1403010.016\symds.sys [2013-4-16 367704]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nav\1403010.016\symefa.sys [2013-4-16 934488]
R1 BHDrvx86;BHDrvx86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_20.3.0.36\definitions\bashdefs\20130531.001\BHDrvx86.sys [2013-5-31 1002072]
R1 CBDisk;CBDisk;c:\windows\system32\drivers\CBDisk.sys [2013-3-13 57800]
R1 ccSet_NAV;Norton AntiVirus Settings Manager;c:\windows\system32\drivers\nav\1403010.016\ccsetx86.sys [2013-4-16 134304]
R1 ccSet_NST;Norton Identity Safe Settings Manager;c:\windows\system32\drivers\nst\7dd03030.013\ccsetx86.sys [2013-4-16 134304]
R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_20.3.0.36\definitions\ipsdefs\20130612.001\IDSvix86.sys [2013-6-13 386720]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nav\1403010.016\ironx86.sys [2013-4-16 175264]
R1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\nav\1403010.016\symnets.sys [2013-4-16 338592]
R2 MacDrive8Service;MacDrive 8 service;c:\program files\mediafour\macdrive 8\MacDrive8Service.exe [2010-10-8 131584]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-6-12 418376]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-6-12 701512]
R2 NAV;Norton AntiVirus;c:\program files\norton antivirus\engine\20.3.1.22\ccsvchst.exe [2013-4-16 144520]
R2 NCO;Norton Identity Safe;c:\program files\norton identity safe\engine\2013.3.3.19\ccsvchst.exe [2013-4-16 144520]
R2 PassThru Service;Internet Pass-Through Service;c:\program files\htc\internet pass-through\PassThruSvr.exe [2013-3-14 167424]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2013-3-14 383264]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2013-3-13 106656]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-6-12 22856]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\netw5v32.sys [2009-6-10 4231168]
R3 OEM13Vfx;Creative Camera OEM013 Video VFX Driver;c:\windows\system32\drivers\OEM13Vfx.sys [2007-3-5 7424]
R3 OEM13Vid;Creative Camera OEM013 Driver;c:\windows\system32\drivers\OEM13Vid.sys [2008-5-28 235840]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2011-6-10 394856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-2-28 161384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2009-10-27 25088]
S3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [2012-12-7 23040]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2013-3-16 14848]
S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
S3 SwitchBoard;SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2013-3-16 49664]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2013-3-16 1343400]
.
=============== File Associations ===============
.
FileExt: .reg: regfile=regedit.exe "%1" [UserChoice]
.
=============== Created Last 30 ================
.
2013-06-12 07:55:55 -------- d-----w- c:\users\johnny\appdata\roaming\Malwarebytes
2013-06-12 07:55:43 -------- d-----w- c:\programdata\Malwarebytes
2013-06-12 07:55:42 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-06-12 07:55:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-06-12 07:54:14 1505280 ----a-w- c:\windows\system32\d3d11.dll
2013-06-12 07:54:04 24576 ----a-w- c:\windows\system32\cryptdlg.dll
2013-06-12 07:53:57 492544 ----a-w- c:\windows\system32\win32spl.dll
2013-06-12 07:53:53 903168 ----a-w- c:\windows\system32\certutil.exe
2013-06-12 07:53:53 43008 ----a-w- c:\windows\system32\certenc.dll
2013-06-12 07:53:53 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2013-06-12 07:53:53 1160192 ----a-w- c:\windows\system32\crypt32.dll
2013-06-12 07:53:53 103936 ----a-w- c:\windows\system32\cryptnet.dll
2013-06-12 07:53:48 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-06-12 07:53:45 3913576 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-06-12 07:53:44 3968872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-06-12 07:53:43 1293672 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-06-11 16:30:18 -------- d-----w- c:\program files\iPod
2013-06-11 16:30:16 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-06-11 16:30:16 -------- d-----w- c:\program files\iTunes
2013-06-11 14:45:30 -------- d-----w- c:\users\johnny\appdata\local\SyfAldeen@vWorker
2013-06-11 14:41:39 -------- d-----w- c:\program files\Teleprompter
2013-06-09 21:05:27 339544 ----a-w- c:\windows\system32\drivers\nav\1404000.028\symnets.sys
2013-06-09 21:05:26 21400 ----a-r- c:\windows\system32\drivers\nav\1404000.028\symelam.sys
2013-06-09 21:05:25 934488 ----a-w- c:\windows\system32\drivers\nav\1404000.028\symefa.sys
2013-06-09 21:05:25 367704 ----a-w- c:\windows\system32\drivers\nav\1404000.028\symds.sys
2013-06-09 21:05:24 603224 ----a-w- c:\windows\system32\drivers\nav\1404000.028\srtsp.sys
2013-06-09 21:05:24 32344 ----a-w- c:\windows\system32\drivers\nav\1404000.028\srtspx.sys
2013-06-09 21:05:23 175264 ----a-w- c:\windows\system32\drivers\nav\1404000.028\ironx86.sys
2013-06-09 21:05:23 134744 ----a-w- c:\windows\system32\drivers\nav\1404000.028\ccsetx86.sys
2013-06-09 21:03:51 14818 ----a-w- c:\windows\system32\drivers\nav\1404000.028\symvtcer.dat
2013-06-09 21:03:50 -------- d-----w- c:\windows\system32\drivers\nav\1404000.028
2013-05-28 17:02:25 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2013-05-28 17:02:25 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2013-05-28 17:02:25 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2013-05-28 17:02:25 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2013-05-28 17:02:25 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2013-05-19 18:04:30 -------- d-----w- C:\Xobni
2013-05-15 10:14:47 2347520 ----a-w- c:\windows\system32\win32k.sys
2013-05-15 10:14:46 40960 ----a-w- c:\windows\system32\wwanprotdim.dll
2013-05-15 10:14:46 186368 ----a-w- c:\windows\system32\wwansvc.dll
2013-05-15 10:14:19 47104 ----a-w- c:\windows\system32\appinfo.dll
2013-05-15 10:14:19 1796096 ----a-w- c:\windows\system32\authui.dll
2013-05-15 10:14:19 101720 ----a-w- c:\windows\system32\consent.exe
2013-05-15 10:14:12 728424 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-05-15 10:14:12 218984 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
.
==================== Find3M ====================
.
2013-06-12 08:27:17 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-12 08:27:17 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-05-16 22:39:39 1800704 ----a-w- c:\windows\system32\jscript9.dll
2013-05-16 22:28:26 1129472 ----a-w- c:\windows\system32\wininet.dll
2013-05-16 22:27:30 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2013-05-16 22:21:37 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2013-05-16 22:20:30 420864 ----a-w- c:\windows\system32\vbscript.dll
2013-05-16 22:16:57 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-05-01 02:59:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2013-05-01 02:59:12 69632 ----a-w- c:\windows\system32\QuickTime.qts
2013-04-13 04:45:16 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45:15 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 13:45:29 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-07 14:36:48 176128 ----a-w- c:\windows\system32\RemoteControl.dll
2013-03-19 04:48:45 38912 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 02:49:16 69632 ----a-w- c:\windows\system32\smss.exe
2013-03-16 12:49:35 152576 ----a-w- c:\windows\system32\msclmd.dll
.
============= FINISH: 16:53:07.76 ===============