New
#11
Can I ask what AV you use, and also what Firewall?
RKILL
ADWCleanerPerforming miscellaneous checks:
* Windows Defender Disabled
[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001
* Windows Firewall Disabled
[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = dword:00000000
[-] Folder Deleted : C:\ProgramData\simplitec
[#] Folder Deleted : C:\ProgramData\Application Data\simplitec
[-] Folder Deleted : C:\Users\Arcadian\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence
...
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
[-] Key Deleted : HKCU\Software\CheckPoint\ISW
[-] Key Deleted : HKCU\Software\darwendlm
[-] Key Deleted : HKCU\Software\PRODUCTSETUP
[-] Key Deleted : HKCU\Software\Softwareopensource
[-] Key Deleted : HKCU\Software\csastats
[-] Key Deleted : HKLM\SOFTWARE\simplitec
[-] Key Deleted : [x64] HKLM\SOFTWARE\CheckPoint\ISW
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-2073988303-265105248-2263932473-1001\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Data Restored : HKU\S-1-5-21-2073988303-265105248-2263932473-1001\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C5CDD303-B921-4A1C-9656-3745F0150771}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C5CDD303-B921-4A1C-9656-3745F0150771}
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Data Restored : HKU\S-1-5-21-2073988303-265105248-2263932473-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
Not sure this will stop the issue you're seeing, but all that stuff needs to go. If you still have simplitec installed, remove it using the standard Windows method for uninstalling programs (Control Panel>Programs and Features).
I would create a restore point, and then go ahead and select everything ADWCleaner found, and CLEAN it all off.
It will be interesting if you can get a screenshot, or a photo with your phone/camera, so we can see exactly what you're seeing.