Need Help removing Scorpion Saver

[EricFMS]

Please help, I have been infected by Scorpion Saver......

 

I have run ADWCleaner, MalwareBytes, and Farbar Recovery Tool.  Please find attached those logs.Please let me know the next steps that I should take.

 

Thanks in advance.

MBAM-log-2013-12-02 (09-37-19).txt

AdwCleanerR0.txt

AdwCleanerS0.txt

Addition.txt

FRST.txt

SystemLook.txt

[Maniac]

Hello EricFMS! My name is Borislav and I will be glad to help you solve your malware problem.

Please note:

• If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
• I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
• Make sure you read all of the instructions and fixes thoroughly before continuing with them.
• Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
• Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
• Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.

Please follow the instructions here and then post your log files in a new reply in this thread:

http://forums.malwarebytes.org/index.php?showtopic=9573

[EricFMS]

Here are the logs.

attach.txt

dds.txt

tdssreport.txt

[Maniac]

Please read my notes again:

Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.

Please follow the instructions here and then post your log files in a new reply in this thread:

[EricFMS]

Attach:

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Professional 

Boot Device: \Device\HarddiskVolume2

Install Date: 11/20/2013 10:56:34 AM

System Uptime: 12/2/2013 9:38:08 AM (1 hours ago)

.

Motherboard: Dell Inc. |  | 0JC5MT

Processor: Intel® Core i7-3540M CPU @ 3.00GHz | SOCKET 0 | 3001/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 450 GiB total, 369.588 GiB free.

D: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP38: 11/25/2013 11:29:18 AM - Installed Microsoft Visio Professional 2013

RP39: 11/25/2013 11:29:32 AM - VISPROR

RP40: 11/25/2013 11:49:44 AM - Removed ScorpionSaver

RP41: 11/25/2013 11:50:12 AM - Removed ScorpionSaver Services

RP42: 11/25/2013 12:16:05 PM - Removed ScorpionSaver Services

RP43: 11/25/2013 3:44:55 PM - Windows Update

RP44: 11/26/2013 3:21:43 PM - Installed Moxa ioAdmin

RP45: 11/26/2013 3:22:41 PM - Installed Moxa ioAdmin

RP46: 11/26/2013 3:34:41 PM - Windows Update

RP47: 11/27/2013 10:38:40 AM - Removed AVG 2014

RP48: 11/27/2013 10:40:42 AM - Removed AVG 2014

RP49: 11/27/2013 10:59:17 AM - Windows Update

RP50: 11/27/2013 11:38:02 AM - Device Driver Package Install: TAP-Win32 Provider V9 Network adapters

RP51: 12/2/2013 9:05:17 AM - Windows Update

.

==== Installed Programs ======================

.

7-Zip 9.20 (x64 edition)

Adobe AIR

Adobe Flash Player 11 ActiveX

Adobe Reader 9.3.3

Apple Application Support

Apple Mobile Device Support

Apple Software Update

ARRL 2011 Handbook

AutoHotkey 1.1.13.01

AWK Search Utility

Bonjour

BRC64

Chatter Desktop

ChromecastApp

Cisco EAP-FAST Module

Cisco LEAP Module

Cisco PEAP Module

Citrix Online Launcher

Crimson 2.0

Crimson 3.0

Custom

D3DX10

Dell Backup and Recovery Manager

Dell Client System Update

Dell Data Protection | Access

Dell Edoc Viewer

Dell Feature Enhancement Pack

Dell Touchpad

DellAccess

Dropbox

DW WLAN Card Utility

EasyConfig

eCatcher version eCatcher 3.2.0.9117

EMBASSY Client Core

ERAS Connector

Gemalto

GemPcCCID

Google Chrome

Google Drive

Google Update Helper

GoToMeeting 6.0.0.1259

Intel® Control Center

Intel® Management Engine Components

Intel® Network Connections 16.8.45.00

Intel® Processor Graphics

Intel® Rapid Storage Technology

Intel® USB 3.0 eXtensible Host Controller Driver

Intel® Trusted Connect Service Client

iTunes

Java 7 Update 17

Java 7 Update 45

Java Auto Updater

Junk Mail filter update

LightTPD for Windows

Malwarebytes Anti-Malware version 1.75.0.1300

Microsoft .NET Framework 4.5.1

Microsoft Access MUI (English) 2013

Microsoft Access Setup Metadata MUI (English) 2013

Microsoft Application Error Reporting

Microsoft DCF MUI (English) 2013

Microsoft Excel MUI (English) 2013

Microsoft Groove MUI (English) 2013

Microsoft InfoPath MUI (English) 2013

Microsoft Lync MUI (English) 2013

Microsoft Office 64-bit Components 2013

Microsoft Office OSM MUI (English) 2013

Microsoft Office OSM UX MUI (English) 2013

Microsoft Office Professional Plus 2013

Microsoft Office Proofing (English) 2013

Microsoft Office Proofing Tools 2013 - English

Microsoft Office Proofing Tools 2013 - Español

Microsoft Office Shared 64-bit MUI (English) 2013

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2013

Microsoft Office Shared MUI (English) 2013

Microsoft Office Shared Setup Metadata MUI (English) 2013

Microsoft OneNote MUI (English) 2013

Microsoft Outlook MUI (English) 2013

Microsoft PowerPoint MUI (English) 2013

Microsoft Publisher MUI (English) 2013

Microsoft SkyDrive

Microsoft SQL Server 2005

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft SQL Server 2005 Express Edition (SQLEXPRESS)

Microsoft SQL Server 2005 Tools Express Edition

Microsoft SQL Server Native Client

Microsoft SQL Server Setup Support Files (English)

Microsoft SQL Server VSS Writer

Microsoft Visio MUI (English) 2013

Microsoft Visio Professional 2013

Microsoft Visual C++ 2005 Redistributable (x64)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219

Microsoft Word MUI (English) 2013

Movie Maker

Moxa ioAdmin

MOXA UPort 1110/1130/1150 Windows Driver Ver1.6

Mozilla Firefox 25.0.1 (x86 en-US)

Mozilla Maintenance Service

MSVCRT

MSVCRT_amd64

MSVCRT110

MSVCRT110_amd64

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Notepad++

OpenOffice 4.0.1

Outils de vérification linguistique 2013 de Microsoft Office - Français

PBA Driver-x64

Photo Common

Photo Gallery

PL-2303 USB-to-Serial

Preboot Manager

Private Information Manager

ScorpionSaver Services

Shared C Run-time for x64

SI TSS

SPBA (WBF) 5.9

ST Microelectronics 3 Axis Digital Accelerometer Solution

Stardock Fences 2

Talk2mVpnService version Talk2mVpnService 3.1.0.0

toolkit32for64bit

Trusted Drive Manager

Visual Studio 2012 x64 Redistributables

Visual Studio 2012 x86 Redistributables

VLC media player 2.0.0

Wave Crypto Runtime 2.0.9.0 x64

Wave Crypto Runtime 2.0.9.0 x86

Wave Infrastructure Installer

Wave Support Software Installer

Windows Driver Package - Red Lion Controls (HMI) USB  (01/13/2010 1.0.0.6)

Windows Driver Package - Red Lion Controls (silabenm) Ports  (02/03/2010 5.4.29.0)

Windows Driver Package - Red Lion Controls (usbser) Ports  (10/08/2010 1.0.0)

Windows Live Communications Platform

Windows Live Essentials

Windows Live Family Safety

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Mail

Windows Live MIME IFilter

Windows Live Photo Common

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

WinPcap 4.1.2

.

==== Event Viewer Messages From Past Week ========

.

12/2/2013 9:38:42 AM, Error: Service Control Manager [7001]  - The WvPCR service depends on the TPM Base Services service which failed to start because of the following error:  The operation completed successfully.

12/2/2013 9:38:42 AM, Error: Service Control Manager [7001]  - The SI TSS v1.2.1.41 TCS service depends on the TPM Base Services service which failed to start because of the following error:  The operation completed successfully.

12/2/2013 9:37:47 AM, Error: Service Control Manager [7016]  - The Talk2MVpnService service has reported an invalid current state 32.

12/2/2013 9:16:51 AM, Error: Service Control Manager [7034]  - The AdpeakProxy service terminated unexpectedly.  It has done this 1 time(s).

11/26/2013 11:33:40 AM, Error: Microsoft-Windows-DistributedCOM [10016]  - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {9BA05972-F6A8-11CF-A442-00A0C90A8F39}  and APPID  {9BA05972-F6A8-11CF-A442-00A0C90A8F39}  to the user Eric-PC\Eric SID (S-1-5-21-2686027424-2739291931-2260355327-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

11/26/2013 11:33:40 AM, Error: Microsoft-Windows-DistributedCOM [10016]  - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {682159D9-C321-47CA-B3F1-30E36B2EC8B9}  and APPID  {CDCBCFCA-3CDC-436F-A4E2-0E02075250C2}  to the user Eric-PC\Eric SID (S-1-5-21-2686027424-2739291931-2260355327-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

11/25/2013 9:22:27 AM, Error: Service Control Manager [7031]  - The McAfee VirusScan Announcer service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

11/25/2013 9:22:27 AM, Error: Service Control Manager [7031]  - The McAfee Proxy Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

11/25/2013 9:22:27 AM, Error: Service Control Manager [7031]  - The McAfee Platform Services service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

11/25/2013 9:22:27 AM, Error: Service Control Manager [7031]  - The McAfee Personal Firewall Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

11/25/2013 9:22:27 AM, Error: Service Control Manager [7031]  - The McAfee OOBE Service2 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

11/25/2013 9:22:27 AM, Error: Service Control Manager [7031]  - The McAfee Home Network service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

11/25/2013 9:22:27 AM, Error: Service Control Manager [7031]  - The McAfee Anti-Spam Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

11/25/2013 3:46:13 PM, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft XML Core Services 4.0 Service Pack 2 for x64-based Systems (KB973688).

11/25/2013 3:45:57 PM, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft XML Core Services 4.0 Service Pack 2 for x64-based Systems (KB954430).

11/25/2013 1:52:56 PM, Error: Service Control Manager [7031]  - The Windows Installer service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

.

==== End Of File ===========================

[EricFMS]

dds:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 

Internet Explorer: 11.0.9600.16428  BrowserJavaVersion: 10.45.2

Run by Eric at 10:12:01 on 2013-12-02

Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.16257.13420 [GMT -5:00]

.

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Program Files\IDT\WDM\STacSV64.exe

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE

C:\Windows\system32\WLANExt.exe

C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe

C:\Windows\System32\spoolsv.exe

C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Common Files\SPBA\upeksvr.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\EMBASSY Client Core\EmbassyServer.exe

C:\Program Files\Intel\iCLS Client\HeciServer.exe

C:\Windows\system32\IProsetMonitor.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\o2flash.exe

C:\Program Files\Dell\Dell Data Protection\Access\Advanced\hapi64\pbadrvsvc.exe

c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\eCatcher-Talk2M\Talk2mVpnService\bin\Talk2MVpnService.exe

C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Dell\Feature Enhancement Pack\DFEPService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\System32\rundll32.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files\DellTPad\Apoint.exe

C:\Program Files\IDT\WDM\sttray64.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE

C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe

C:\Program Files\Dell\Feature Enhancement Pack\DFEPApplication.exe

C:\Program Files\DellTPad\ApMsgFwd.exe

C:\dell\DBRM\Reminder\DbrmTrayicon.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\salesforce.com\Chatter Desktop\Chatter Desktop.exe

C:\Users\Eric\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE

C:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe

C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\DellTPad\HidFind.exe

C:\Program Files\DellTPad\Apntex.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Users\Eric\Downloads\FRST64.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\igfxsrvc.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

mWinlogon: Userinit = userinit.exe,

uRun: [GoogleChromeAutoLaunch_1C05472DCCB0D10167C2A5E00B87815A] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

uRun: [Google Update] "C:\Users\Eric\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart

mRun: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [brickcom_CMS] C:\Program Files (x86)\Brickcom\BRC64\EXE\AUTO_START.exe

StartupFolder: C:\Users\Eric\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\CHATTE~1.LNK - C:\Program Files (x86)\salesforce.com\Chatter Desktop\Chatter Desktop.exe

StartupFolder: C:\Users\Eric\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Eric\AppData\Roaming\Dropbox\bin\Dropbox.exe

StartupFolder: C:\Users\Eric\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SENDTO~1.LNK - C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE

StartupFolder: C:\Users\Eric\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SMARTS~1.LNK - C:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\AUTO_S~1.LNK - C:\Program Files (x86)\Brickcom\BRC64\EXE\AUTO_START.exe

uPolicies-Explorer: NoDriveTypeAutoRun = dword:145

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

mPolicies-System: DisableCAD = dword:1

IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000

IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

TCP: NameServer = 192.168.2.6

TCP: Interfaces\{098B929D-5382-4AAC-B436-2D587904D184} : DHCPNameServer = 192.168.2.6

TCP: Interfaces\{098B929D-5382-4AAC-B436-2D587904D184}\348627F6D6563616374763536373 : DHCPNameServer = 192.168.255.249

TCP: Interfaces\{098B929D-5382-4AAC-B436-2D587904D184}\741696C6 : DHCPNameServer = 192.168.1.1

Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL

Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

LSA: Authentication Packages =  msv1_0 wvauth

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll

x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL

x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL

x64-Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe

x64-Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe

x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe

x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe

x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe

x64-Run: [broadcom Wireless Manager UI] C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe

x64-Run: [TdmNotify] C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe

x64-Run: [DFEPApplication] C:\Program Files\Dell\Feature Enhancement Pack\DFEPApplication.exe

x64-Run: [Fences] "C:\Program Files (x86)\Stardock\Fences\Fences.exe" /startup

x64-Run: [DBRMTray] C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe

x64-RunOnce: [DBRMTray] C:\Dell\DBRM\Reminder\TrayApp.exe

x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll

x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll

x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL

x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned>

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-Notify: igfxcui - igfxdev.dll

x64-Notify: spba - C:\Program Files\Common Files\SPBA\homefus2.dll

x64-SSODL: WebCheck - <orphaned>

x64-STS: FencesShlExt Class - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\mz7j5ydg.default\

FF - plugin: C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\Users\Eric\AppData\Local\Citrix\Plugins\104\npappdetector.dll

FF - plugin: C:\Users\Eric\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll

FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll

FF - plugin: C:\Windows\SysWOW64\npmproxy.dll

.

============= SERVICES / DRIVERS ===============

.

R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2013-11-15 20464]

R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\System32\drivers\stdcfltn.sys [2013-11-15 22128]

R2 DFEPService;Dell Feature Enhancement Pack Service;C:\Program Files\Dell\Feature Enhancement Pack\DFEPService.exe [2012-8-15 2280504]

R2 EmbassyService;EmbassyService;C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\EMBASSY Client Core\EmbassyServer.exe [2013-3-11 231792]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-11-15 13632]

R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]

R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2013-11-15 189608]

R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-11-15 165336]

R2 PbaDrvSvc_x64;Dell PBA x64 Service;C:\Program Files\Dell\Dell Data Protection\Access\Advanced\hapi64\pbadrvsvc.exe [2013-1-21 21504]

R2 Talk2MVpnService;Talk2MVpnService;C:\Program Files (x86)\eCatcher-Talk2M\Talk2mVpnService\bin\Talk2MVpnService.exe [2013-11-27 102400]

R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-11-15 366040]

R2 Wave Authentication Manager Service;Wave Authentication Manager Service;C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe [2013-2-26 1773056]

R3 dcdbas;System Management Driver;C:\Windows\System32\drivers\dcdbas64.sys [2012-9-23 39016]

R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2013-11-15 331264]

R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-11-15 358896]

R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-11-15 792560]

R3 O2SDJRDR;O2SDJRDR;C:\Windows\System32\drivers\o2sdjw7x64.sys [2013-11-15 85336]

R3 ST_ACCEL;STMicroelectronics Accelerometer Service;C:\Windows\System32\drivers\ST_ACCEL.sys [2013-11-15 68208]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]

S2 WvPCR;WvPCR;C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Common\WvPCR.exe [2013-3-8 254824]

S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]

S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2013-11-15 57856]

S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-9-12 1512448]

S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-11-20 111616]

S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]

S3 LightTPD;LightTPD;C:\Windows\LIGHTSRC.EXE [2013-11-22 9728]

S3 mxuwdrv2;MOXA UPort 1110/1130/1150 Windows Driver;C:\Windows\System32\drivers\mxuwdrv2.sys [2013-11-20 83480]

S3 netvsc;netvsc;C:\Windows\System32\drivers\netvsc60.sys [2010-11-21 168448]

S3 O2MDFRDR;O2MDFRDR;C:\Windows\System32\drivers\o2mdfw7x64.sys [2013-11-15 72808]

S3 O2MDRRDR;O2MDRRDR;C:\Windows\System32\drivers\O2MDRw7x64.sys [2013-11-15 74984]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-11-27 19456]

S3 silabenm;Red Lion Virtual Communications Port Serial Port Enumerator Driver;C:\Windows\System32\drivers\silabenm.sys [2013-11-20 52224]

S3 silabser;Red Lion Virtual Communications Port Driver;C:\Windows\System32\drivers\silabser.sys [2013-11-20 72192]

S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]

S3 SynthVid;SynthVid;C:\Windows\System32\drivers\VMBusVideoM.sys [2010-11-21 22528]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-11-27 57856]

S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-11-27 30208]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-11-22 1255736]

.

=============== File Associations ===============

.

ShellExec: Video_Player.exe: Open="C:\Program Files (x86)\Brickcom\BRC64\EXE\Video_Player.exe"

.

=============== Created Last 30 ================

.

2013-12-02 14:40:58 -------- d-----w- C:\FRST

2013-12-02 14:31:15 -------- d-----w- C:\Users\Eric\AppData\Roaming\Malwarebytes

2013-12-02 14:31:07 -------- d-----w- C:\ProgramData\Malwarebytes

2013-12-02 14:31:06 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2013-12-02 14:31:06 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-12-02 14:21:21 -------- d-----w- C:\AdwCleaner

2013-12-02 14:05:25 10285968 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0D859E3D-DECB-47F9-8068-6F57111237CB}\mpengine.dll

2013-11-27 16:41:55 -------- d-----w- C:\Users\Eric\.talk2M

2013-11-27 16:37:39 31232 ----a-w- C:\Windows\System32\drivers\tap0901.sys

2013-11-27 16:37:38 24576 ----a-w- C:\Windows\keyhh.exe

2013-11-27 16:37:38 -------- d-----w- C:\Program Files (x86)\eCatcher-Talk2M

2013-11-27 16:06:53 -------- d-----w- C:\Windows\Migration

2013-11-27 16:06:13 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui

2013-11-27 16:03:32 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys

2013-11-27 16:03:32 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll

2013-11-27 16:03:32 744448 ----a-w- C:\Windows\System32\WUDFx.dll

2013-11-27 16:03:32 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll

2013-11-27 16:03:32 229888 ----a-w- C:\Windows\System32\WUDFHost.exe

2013-11-27 16:03:32 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys

2013-11-27 16:03:32 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll

2013-11-27 16:02:38 10285968 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll

2013-11-27 16:02:06 -------- d-----w- C:\Windows\System32\MRT

2013-11-27 15:41:46 -------- d-----w- C:\ProgramData\Brother

2013-11-27 14:33:35 -------- d-----r- C:\Users\Eric\Google Drive

2013-11-26 20:34:50 -------- d-----w- C:\Program Files (x86)\MSXML 4.0

2013-11-26 20:22:52 36864 ----a-r- C:\Users\Eric\AppData\Roaming\Microsoft\Installer\{F09ABA2D-67B2-454D-9AB1-0CF416C62EED}\_9502E62A5D24_4845_8370_D39693D49180.exe

2013-11-26 18:03:09 -------- d-----w- C:\Users\Eric\AppData\Roaming\sfdc-desktop

2013-11-26 18:03:08 -------- d-----w- C:\Users\Eric\AppData\Roaming\sfdc-desktop.0E7F0072024938CDBA99B20C38B5F315254C2A5B.1

2013-11-26 18:03:02 -------- d-----w- C:\Program Files (x86)\salesforce.com

2013-11-25 16:49:03 -------- d-----w- C:\Users\Eric\AppData\Local\ElevatedDiagnostics

2013-11-25 16:30:07 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2013-11-25 16:30:07 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys

2013-11-25 16:30:07 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2013-11-25 16:30:07 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2013-11-25 16:30:07 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys

2013-11-25 16:30:07 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2013-11-25 16:30:07 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2013-11-25 16:02:43 -------- d-----w- C:\ProgramData\regid.1991-06.com.microsoft

2013-11-25 15:58:04 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services

2013-11-25 15:57:56 -------- d-----w- C:\Users\Eric\AppData\Local\Microsoft Help

2013-11-22 20:43:37 -------- d-----w- C:\Users\Eric\AppData\Local\Kerkia

2013-11-22 16:19:39 -------- d-----w- C:\PanoDVR

2013-11-22 16:17:30 9728 ----a-w- C:\Windows\LIGHTSRC.EXE

2013-11-22 16:17:28 -------- d-----w- C:\Program Files (x86)\LightTPD

2013-11-22 16:17:09 -------- d-----w- C:\ProgramData\Brickcom

2013-11-22 16:16:08 -------- d-----w- C:\Program Files (x86)\Brickcom

2013-11-22 16:10:26 -------- d-----w- C:\Program Files\Microsoft SQL Server

2013-11-22 16:06:09 -------- d-----w- C:\Windows\SysWow64\Wat

2013-11-22 16:06:09 -------- d-----w- C:\Windows\System32\Wat

2013-11-22 15:59:25 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server

2013-11-21 22:41:33 -------- d-----r- C:\Users\Eric\Dropbox

2013-11-21 22:38:53 -------- d-----w- C:\Users\Eric\AppData\Roaming\Dropbox

2013-11-21 22:29:02 -------- d-----w- C:\Program Files\AutoHotkey

2013-11-21 19:06:35 439296 ----a-w- C:\Windows\System32\AdpeakProxy64.dll

2013-11-21 19:06:30 338944 ----a-w- C:\Windows\SysWow64\AdpeakProxy.dll

2013-11-21 15:09:56 -------- d-----w- C:\Users\Eric\AppData\Roaming\TuneUp Software

2013-11-21 15:02:20 -------- d-----w- C:\Users\Eric\AppData\Local\Apple Computer

2013-11-21 15:02:03 33240 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys

2013-11-21 14:59:53 -------- d-----w- C:\Program Files\iPod

2013-11-21 14:59:52 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2013-11-21 14:59:52 -------- d-----w- C:\Program Files\iTunes

2013-11-21 14:59:52 -------- d-----w- C:\Program Files (x86)\iTunes

2013-11-21 14:58:59 -------- d-----w- C:\Users\Eric\AppData\Local\Apple

2013-11-21 14:58:19 -------- d-----w- C:\Program Files\Bonjour

2013-11-21 14:58:19 -------- d-----w- C:\Program Files (x86)\Bonjour

2013-11-21 14:58:17 -------- d-----w- C:\Users\Eric\AppData\Roaming\OpenOffice

2013-11-21 14:57:17 -------- d--h--w- C:\ProgramData\Common Files

2013-11-21 14:57:17 -------- d-----w- C:\Users\Eric\AppData\Local\MFAData

2013-11-21 14:57:17 -------- d-----w- C:\ProgramData\MFAData

2013-11-21 14:53:26 -------- d-----w- C:\Program Files (x86)\OpenOffice 4

2013-11-21 14:53:01 633856 ----a-w- C:\Windows\System32\comctl32.dll

2013-11-21 14:53:01 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll

2013-11-21 14:52:47 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll

2013-11-21 14:52:47 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll

2013-11-21 14:52:06 142336 ----a-w- C:\Windows\System32\poqexec.exe

2013-11-21 14:50:55 424448 ----a-w- C:\Windows\System32\KernelBase.dll

2013-11-21 14:46:36 3155968 ----a-w- C:\Windows\System32\win32k.sys

2013-11-21 14:44:46 -------- d-----w- C:\Program Files\office.tmp

2013-11-21 03:40:55 -------- d-----w- C:\Users\Eric\AppData\Local\Adobe

2013-11-21 03:31:17 -------- d-----w- C:\Program Files (x86)\ARRL 2011 Handbook

2013-11-21 03:15:27 -------- d-----w- C:\Logs

2013-11-21 01:14:09 -------- d-----w- C:\Program Files (x86)\Microsoft SkyDrive

2013-11-21 01:14:08 -------- d-----r- C:\Users\Eric\SkyDrive

2013-11-21 01:14:01 -------- d-----w- C:\ProgramData\Microsoft SkyDrive

2013-11-21 01:09:04 563328 ------w- C:\ProgramData\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe

2013-11-21 01:01:53 26719 ----a-w- C:\Windows\SysWow64\SERSPL.VXD

2013-11-21 01:01:52 35892 ----a-w- C:\Windows\SysWow64\SER9PL.sys

2013-11-21 01:01:44 -------- d-----w- C:\ProgramData\Red Lion Controls

2013-11-21 00:47:22 -------- d-----w- C:\Program Files (x86)\WinPcap

2013-11-21 00:47:02 72192 ----a-w- C:\Windows\System32\drivers\silabser.sys

2013-11-21 00:47:02 52224 ----a-w- C:\Windows\System32\drivers\silabenm.sys

2013-11-21 00:46:29 -------- d-----w- C:\Program Files (x86)\Red Lion Controls

2013-11-21 00:46:08 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll

2013-11-21 00:46:08 32768 ------w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll

2013-11-21 00:46:08 225280 ------w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll

2013-11-21 00:46:08 176128 ------w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll

2013-11-21 00:46:07 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe

2013-11-20 21:50:14 878080 ----a-w- C:\Windows\System32\advapi32.dll

2013-11-20 21:49:57 327168 ----a-w- C:\Windows\System32\mswsock.dll

2013-11-20 21:49:57 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll

2013-11-20 21:49:57 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2013-11-20 21:39:50 873384 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll

2013-11-20 21:39:50 796072 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2013-11-20 21:33:49 -------- d-----w- C:\Users\Eric\AppData\Roaming\moxa

2013-11-20 21:33:45 -------- d-----w- C:\Program Files (x86)\Moxa

2013-11-20 20:41:20 83480 ----a-w- C:\Windows\System32\drivers\mxuwdrv2.sys

2013-11-20 20:41:20 35352 ----a-w- C:\Windows\System32\mxuwcfg2.dll

2013-11-20 20:41:20 31256 ----a-w- C:\Windows\System32\mxuport2.dll

2013-11-20 20:41:19 -------- d-----w- C:\Program Files\Moxa

2013-11-20 19:25:27 -------- d-----w- C:\ProgramData\Oracle

2013-11-20 19:25:19 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

2013-11-20 19:05:29 -------- d-----w- C:\Windows\System32\appmgmt

2013-11-20 18:48:56 -------- d-----w- C:\Users\Eric\AppData\Local\Stardock_Corporation

2013-11-20 18:41:14 -------- d-----w- C:\Program Files (x86)\VideoLAN

2013-11-20 18:40:56 -------- d-----w- C:\temp

2013-11-20 18:38:39 -------- d-----w- C:\Users\Eric\AppData\Local\Programs

2013-11-20 18:38:13 -------- d-----w- C:\ProgramData\Stardock

2013-11-20 18:37:59 -------- d-----w- C:\Users\Eric\AppData\Roaming\MyWordTool

2013-11-20 18:37:34 -------- d-----w- C:\Users\Eric\AppData\Roaming\Stardock

2013-11-20 18:37:26 -------- d-----w- C:\Program Files (x86)\Stardock

2013-11-20 18:27:29 -------- d-----w- C:\Users\Eric\AppData\Local\Google

2013-11-20 18:27:03 -------- d-----w- C:\Users\Eric\AppData\Local\Deployment

2013-11-20 18:27:03 -------- d-----w- C:\Users\Eric\AppData\Local\Apps

2013-11-20 18:24:34 2622464 ----a-w- C:\Windows\System32\wucltux.dll

2013-11-20 18:24:30 99840 ----a-w- C:\Windows\System32\wudriver.dll

2013-11-20 18:24:24 36864 ----a-w- C:\Windows\System32\wuapp.exe

2013-11-20 18:24:24 186752 ----a-w- C:\Windows\System32\wuwebv.dll

2013-11-20 18:19:56 -------- d-----w- C:\Users\Eric\AppData\Roaming\Intel Corporation

2013-11-15 07:28:43 6101504 ----a-w- C:\Windows\System32\stlang64.dll

2013-11-15 07:28:43 1897984 ----a-w- C:\Windows\System32\IDTNC64.cpl

2013-11-15 07:28:41 -------- d-----w- C:\Program Files\IDT

2013-11-15 07:28:27 -------- d-----w- C:\Windows\devcon

2013-11-15 07:28:17 -------- d-----w- C:\Program Files\Common Files\Intel

2013-11-15 07:28:16 -------- d-----w- C:\Program Files (x86)\Common Files\Intel

2013-11-15 07:28:15 -------- d-----w- C:\Intel

2013-11-15 07:28:05 22128 ----a-w- C:\Windows\System32\drivers\stdcfltn.sys

2013-11-15 07:23:54 -------- d-----w- C:\Program Files\STMicroelectronics

2013-11-15 07:23:05 -------- d-----w- C:\Program Files\DellTPad

2013-11-15 07:14:29 331264 ----a-w- C:\Windows\System32\drivers\IntcDAud.sys

2013-11-15 07:13:47 36472 ----a-w- C:\Windows\System32\NicCo36.dll

2013-11-15 07:13:44 114520 ----a-w- C:\Windows\System32\Vxdif.dll

2013-11-15 07:13:43 489264 ----a-w- C:\Windows\System32\drivers\Apfiltr.sys

2013-11-15 07:13:38 62784 ----a-w- C:\Windows\System32\drivers\HECIx64.sys

2013-11-15 07:12:59 95544 ----a-w- C:\Windows\System32\bcmwlcoi.dll

2013-11-15 07:12:59 4746304 ----a-w- C:\Windows\System32\drivers\BCMWL664.SYS

2013-11-15 07:12:58 3952640 ----a-w- C:\Windows\System32\bcmihvsrv64.dll

2013-11-15 07:12:58 3617792 ----a-w- C:\Windows\System32\bcmihvui64.dll

2013-11-15 07:11:57 -------- d-----w- C:\Apps

2013-11-15 07:08:25 -------- d-----w- C:\Windows\System32\oem

2013-11-15 07:08:21 -------- d-----w- C:\Drivers

2013-11-15 05:56:00 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation

2013-11-15 05:52:05 -------- d-----w- C:\Windows\{69093D49-3DD1-4FB5-A378-0D4DB4CF86EA}

2013-11-15 05:51:54 -------- d-----w- C:\Windows\en

2013-11-15 05:51:48 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

2013-11-15 05:51:18 57856 ----a-w- C:\Windows\System32\drivers\fssfltr.sys

2013-11-15 05:51:06 -------- d-----w- C:\Windows\PCHEALTH

2013-11-15 05:50:24 77656 ----a-w- C:\Windows\System32\XAPOFX1_5.dll

2013-11-15 05:50:24 74072 ----a-w- C:\Windows\SysWow64\XAPOFX1_5.dll

2013-11-15 05:50:24 527192 ----a-w- C:\Windows\SysWow64\XAudio2_7.dll

2013-11-15 05:50:24 518488 ----a-w- C:\Windows\System32\XAudio2_7.dll

2013-11-15 05:50:24 276832 ----a-w- C:\Windows\System32\d3dx11_43.dll

2013-11-15 05:50:24 2526056 ----a-w- C:\Windows\System32\D3DCompiler_43.dll

2013-11-15 05:50:24 248672 ----a-w- C:\Windows\SysWow64\d3dx11_43.dll

2013-11-15 05:50:24 2106216 ----a-w- C:\Windows\SysWow64\D3DCompiler_43.dll

2013-11-15 05:50:08 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll

2013-11-15 05:50:08 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll

2013-11-15 05:49:53 4398360 ----a-w- C:\Windows\System32\d3dx9_32.dll

2013-11-15 05:49:53 3426072 ----a-w- C:\Windows\SysWow64\d3dx9_32.dll

2013-11-15 05:48:52 89944 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\5d08e70b1cee1c603\DSETUP.dll

2013-11-15 05:48:52 537432 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\5d08e70b1cee1c603\DXSETUP.exe

2013-11-15 05:48:52 1801048 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\5d08e70b1cee1c603\dsetup32.dll

2013-11-15 05:48:50 94040 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\5bbe07c51cee1c602\DSETUP.dll

2013-11-15 05:48:50 525656 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\5bbe07c51cee1c602\DXSETUP.exe

2013-11-15 05:48:50 1691480 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\5bbe07c51cee1c602\dsetup32.dll

2013-11-15 05:48:49 89944 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\5b932f001cee1c601\DSETUP.dll

2013-11-15 05:48:49 537432 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\5b932f001cee1c601\DXSETUP.exe

2013-11-15 05:48:49 1801048 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\5b932f001cee1c601\dsetup32.dll

2013-11-15 05:48:49 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live

2013-11-15 05:48:34 -------- d-----w- C:\Windows\{7197954C-D1BE-4A17-8E69-52FDC4010A30}

2013-11-15 05:43:18 93288 ----a-w- C:\Windows\dcmdev64.exe

2013-11-15 05:43:18 382056 ----a-w- C:\Windows\hapint.exe

2013-11-15 05:43:18 335464 ----a-w- C:\Windows\dchcfg64.exe

2013-11-15 05:43:16 459880 ----a-w- C:\Windows\System32\dchbas64.dll

2013-11-15 05:43:16 322664 ----a-w- C:\Windows\System32\dchapi64.dll

2013-11-15 05:42:34 -------- d-----w- C:\ProgramData\Security Innovation

2013-11-15 05:42:34 -------- d-----w- C:\Program Files (x86)\Security Innovation

2013-11-15 05:41:57 -------- d-----w- C:\Program Files\Common Files\SPBA

2013-11-15 05:41:57 -------- d-----w- C:\Program Files (x86)\Common Files\SPBA

2013-11-15 05:41:29 -------- d-----w- C:\Program Files (x86)\Gemalto

2013-11-15 05:41:22 -------- d-----w- C:\Windows\Downloaded Installations

2013-11-15 05:41:08 -------- d-----w- C:\ProgramData\Wave Systems Corp

2013-11-15 05:39:06 189608 ----a-w- C:\Windows\System32\IPROSetMonitor.exe

2013-11-15 05:38:04 41984 ----a-w- C:\Windows\System32\drivers\USB3Ver.dll

2013-11-15 05:38:03 792560 ----a-w- C:\Windows\System32\drivers\iusb3xhc.sys

2013-11-15 05:38:03 358896 ----a-w- C:\Windows\System32\drivers\iusb3hub.sys

2013-11-15 05:38:03 20464 ----a-w- C:\Windows\System32\drivers\iusb3hcs.sys

2013-11-15 05:36:49 -------- d-----w- C:\Program Files (x86)\ST Microelectronics

2013-11-15 05:36:43 16344 ----a-w- C:\Windows\System32\drivers\IntelMEFWVer.dll

2013-11-15 05:36:27 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent

2013-11-15 05:36:18 -------- d-----w- C:\Program Files (x86)\Cisco

2013-11-15 05:35:38 1131520 ----a-w- C:\Windows\System32\BCMLogon.dll

2013-11-15 05:35:36 8225280 ----a-w- C:\Windows\System32\BCMWLCPL.CPL

2013-11-15 05:35:36 73728 ----a-w- C:\Windows\System32\wltrynt.dll

2013-11-15 05:35:36 6656 ----a-w- C:\Windows\System32\bcmwlrc.dll

2013-11-15 05:35:36 4993024 ----a-w- C:\Windows\System32\bcmttls.dll

2013-11-15 05:35:36 4961800 ----a-w- C:\Windows\SysWow64\vcredist_x64.exe

2013-11-15 05:35:36 446 ----a-w- C:\Windows\SysWow64\vcredist_x64.bat

2013-11-15 05:35:36 445 ----a-w- C:\Windows\System32\vcredist_x64.bat

2013-11-15 05:35:36 3161088 ----a-w- C:\Windows\System32\vcredist_x64.exe

2013-11-15 05:35:36 22592 ----a-w- C:\Windows\System32\drivers\bcm42rly.sys

2013-11-15 05:35:36 -------- d-----w- C:\Program Files\Dell

2013-11-15 05:35:18 -------- d-----w- C:\Program Files (x86)\Dell

2013-11-15 05:32:38 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2013-11-15 05:32:38 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2013-11-15 05:32:32 -------- d-----w- C:\Program Files\Dell Inc

.

==================== Find3M  ====================

.

2013-11-20 21:50:14 859648 ----a-w- C:\Windows\System32\tdh.dll

2013-11-19 08:33:38 267936 ------w- C:\Windows\System32\MpSigStub.exe

2013-11-15 07:10:21 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll

2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL

2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL

2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll

2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL

2013-10-09 14:14:56 1724416 ----a-w- C:\Windows\SysWow64\gdiplus.dll

2013-10-05 20:25:35 1474048 ----a-w- C:\Windows\System32\crypt32.dll

2013-10-05 19:57:25 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll

2013-10-04 02:28:31 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll

2013-10-04 02:25:17 197120 ----a-w- C:\Windows\System32\credui.dll

2013-10-04 02:24:49 1930752 ----a-w- C:\Windows\System32\authui.dll

2013-10-04 01:58:50 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll

2013-10-04 01:56:25 168960 ----a-w- C:\Windows\SysWow64\credui.dll

2013-10-04 01:56:00 1796096 ----a-w- C:\Windows\SysWow64\authui.dll

2013-10-03 02:23:48 404480 ----a-w- C:\Windows\System32\gdi32.dll

2013-10-03 02:00:44 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll

2013-09-28 01:09:10 497152 ----a-w- C:\Windows\System32\drivers\afd.sys

2013-09-25 02:26:40 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2013-09-25 02:26:40 154560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2013-09-25 02:23:33 28672 ----a-w- C:\Windows\System32\sspisrv.dll

2013-09-25 02:23:33 135680 ----a-w- C:\Windows\System32\sspicli.dll

2013-09-25 02:23:01 28160 ----a-w- C:\Windows\System32\secur32.dll

2013-09-25 02:22:59 340992 ----a-w- C:\Windows\System32\schannel.dll

2013-09-25 02:21:50 307200 ----a-w- C:\Windows\System32\ncrypt.dll

2013-09-25 02:21:07 1447936 ----a-w- C:\Windows\System32\lsasrv.dll

2013-09-25 01:58:17 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll

2013-09-25 01:57:26 22016 ----a-w- C:\Windows\SysWow64\secur32.dll

2013-09-25 01:57:24 247808 ----a-w- C:\Windows\SysWow64\schannel.dll

2013-09-25 01:56:42 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll

2013-09-25 01:03:24 30720 ----a-w- C:\Windows\System32\lsass.exe

2013-09-12 02:21:54 863344 ----a-w- C:\Windows\SysWow64\msvcr110_clr0400.dll

2013-09-12 02:21:54 501872 ----a-w- C:\Windows\SysWow64\msvcp110_clr0400.dll

2013-09-12 02:21:54 28776 ----a-w- C:\Windows\SysWow64\aspnet_counters.dll

2013-09-12 02:21:54 18000 ----a-w- C:\Windows\SysWow64\msvcr100_clr0400.dll

2013-09-12 00:39:06 855664 ----a-w- C:\Windows\System32\msvcr110_clr0400.dll

2013-09-12 00:39:06 614000 ----a-w- C:\Windows\System32\msvcp110_clr0400.dll

2013-09-12 00:39:06 30312 ----a-w- C:\Windows\System32\aspnet_counters.dll

2013-09-12 00:39:06 18000 ----a-w- C:\Windows\System32\msvcr100_clr0400.dll

.

============= FINISH: 10:12:29.26 ===============

[Maniac]

Step 1

Please uninstall this application: ScorpionSaver Services

Step 2

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

Step 3

• Launch Malwarebytes' Anti-Malware
• Go to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.
• Go to Scanner tab and select Perform Quick Scan, then click Scan.
• The scan may take some time to finish,so please be patient.
• When the scan is complete, click OK, then Show Results to view the results.
• Make sure that everything is checked, and click Remove Selected.
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Copy&Paste the entire report in your next reply.

Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.

In your next reply, post the following log files:

• Junkware Removal Tool log
• Malwarebytes' Anti-Malware log

[EricFMS]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.0.8 (11.05.2013:1)

OS: Windows 7 Professional x64

Ran by Eric on Fri 12/06/2013 at 10:05:11.04

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

~~~ Services

 

 

 

~~~ Registry Values

 

 

 

~~~ Registry Keys

 

 

 

~~~ Files

 

Successfully deleted: [File] "C:\Users\Eric\appdata\locallow\SkwConfig.bin"

 

 

 

~~~ Folders

 

 

 

~~~ Event Viewer Logs were cleared

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on Fri 12/06/2013 at 10:08:56.81

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[EricFMS]

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

 

Database version: v2013.12.02.06

 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.16428

Eric :: ERIC-PC [administrator]

 

12/6/2013 10:10:05 AM

mbam-log-2013-12-06 (10-10-05).txt

 

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 209503

Time elapsed: 2 minute(s), 53 second(s)

 

Memory Processes Detected: 0

(No malicious items detected)

 

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 0

(No malicious items detected)

 

Registry Values Detected: 0

(No malicious items detected)

 

Registry Data Items Detected: 0

(No malicious items detected)

 

Folders Detected: 0

(No malicious items detected)

 

Files Detected: 0

(No malicious items detected)

 

(end)

[EricFMS]

This was the initial log when I first ran MBAM just prior to this post.

 

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

 

Database version: v2013.12.02.06

 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.16428

Eric :: ERIC-PC [administrator]

 

12/2/2013 9:34:15 AM

MBAM-log-2013-12-02 (09-37-19).txt

 

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 208804

Time elapsed: 2 minute(s), 27 second(s)

 

Memory Processes Detected: 1

C:\Program Files\ScorpionSaver Services\AdpeakProxy.exe (PUP.Optional.ScorpionSaver) -> 1960 -> No action taken.

 

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 13

HKCR\CLSID\{10AD2C61-0898-4348-8600-14A342F22AC3} (PUP.Optional.ScorpionSaver) -> No action taken.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{10AD2C61-0898-4348-8600-14A342F22AC3} (PUP.Optional.ScorpionSaver) -> No action taken.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{10AD2C61-0898-4348-8600-14A342F22AC3} (PUP.Optional.ScorpionSaver) -> No action taken.

HKCR\AppID\AdpeakProxy.exe (PUP.Optional.Adpeak) -> No action taken.

HKCR\Wow6432Node\AppID\AdpeakProxy.exe (PUP.Optional.Adpeak) -> No action taken.

HKCU\SOFTWARE\MyWordTool (PUP.Optional.MyWordTool.A) -> No action taken.

HKLM\SOFTWARE\MyWordTool (PUP.Optional.MyWordTool.A) -> No action taken.

HKLM\SOFTWARE\Wow6432Node\Adpeak, Inc. (PUP.Optional.Adpeak) -> No action taken.

HKLM\SOFTWARE\Wow6432Node\Wow6432Node\Adpeak, Inc. (PUP.Optional.Adpeak) -> No action taken.

HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> No action taken.

HKCR\TypeLib\{ED721A76-8160-4DA0-A18E-7FD7C4574774} (PUP.Optional.ScorpionSaver) -> No action taken.

HKCR\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2} (PUP.Optional.ScorpionSaver) -> No action taken.

HKLM\SYSTEM\CurrentControlSet\Services\AdpeakProxy (PUP.Optional.ScorpionSaver) -> No action taken.

 

Registry Values Detected: 1

HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {F723A03D-5212-11E3-9CA8-F01FAF55C7F8} -> No action taken.

 

Registry Data Items Detected: 0

(No malicious items detected)

 

Folders Detected: 3

C:\Users\Eric\AppData\Local\Temp\ct3310511 (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\plugins (PUP.Optional.Conduit.A) -> No action taken.

C:\Program Files\ScorpionSaver Services (PUP.Optional.ScorpionSaver) -> No action taken.

 

Files Detected: 48

C:\Users\Eric\AppData\Local\Temp\mgsqlite3.7z (PUP.Optional.SweetIM) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\mgsqlite3.dll (PUP.Optional.SweetIM) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\nsdB4F3.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\nsi2B57.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\nss8B8F.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\nsvCC08.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\nsx57E5.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\Shortcut_IMsetup.exe (PUP.Optional.SweetIM) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\SPStub.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\SweetIMInstallValidator.exe (PUP.Optional.Conduit) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\WSSetup.exe (PUP.Optional.InstallBrain.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\chLogic.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\ctbe.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\ieLogic.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\sl.exe (PUP.Optional.Conduit) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\spch.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\statisticsStub.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\stub.exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\396FLJR6\conduitinstaller[1].exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\396FLJR6\mgsqlite3[1].7z (PUP.Optional.SweetIM) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\396FLJR6\SPSetup[1].exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\396FLJR6\SweetPacks[1].exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\53118627\checktbexist[1].exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\6MNAWDZU\statisticsstub[1].exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\6MNAWDZU\SweetPacks[1].exe (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\PVV712IR\bundlesweetimsetup[1].exe (PUP.Optional.SweetIM) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\PVV712IR\checktbexist[1].exe (PUP.Optional.Conduit) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\PVV712IR\Setup[1].exe (PUP.Optional.LuckyLeap.A) -> No action taken.

C:\Users\Eric\Local Settings\Temporary Internet Files\Content.IE5\PVV712IR\SkywalkerSetup[1].exe (PUP.Optional.Sweetpacks) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\chromeid.txt (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\CT3310511.txt (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\initdata.json (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\manifest.json (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\setup.ini.txt (PUP.Optional.Conduit.A) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\ct3310511\plugins\TBVerifier.dll (PUP.Optional.Conduit.A) -> No action taken.

C:\Program Files\ScorpionSaver Services\AdpeakProxy.dll (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\AdpeakProxy.exe (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\AdpeakProxy64.dll (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\AdpeakRegisterLSP.exe (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\AdpeakRegisterLSP.ini (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\AdpeakRegisterLSP64.exe (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\Installbat.dll (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\Installbat64.dll (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\InstallDLL.dll (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\InstallDLL64.dll (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\Microsoft.Deployment.WindowsInstaller.dll (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\Microsoft.Deployment.WindowsInstaller.xml (PUP.Optional.ScorpionSaver) -> No action taken.

C:\Program Files\ScorpionSaver Services\PCProxyDLL.dll (PUP.Optional.ScorpionSaver) -> No action taken.

 

(end)

[Maniac]

Your Malwarebytes database version is old, so please update it before start scanning.

[EricFMS]

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

 

Database version: v2013.12.06.08

 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.16428

Eric :: ERIC-PC [administrator]

 

12/6/2013 2:12:12 PM

MBAM-log-2013-12-06 (14-14-06).txt

 

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 210997

Time elapsed: 1 minute(s), 32 second(s)

 

Memory Processes Detected: 0

(No malicious items detected)

 

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 0

(No malicious items detected)

 

Registry Values Detected: 0

(No malicious items detected)

 

Registry Data Items Detected: 0

(No malicious items detected)

 

Folders Detected: 0

(No malicious items detected)

 

Files Detected: 7

C:\temp\InstallServices64.msi (PUP.Optional.Adpeak) -> No action taken.

C:\temp\ScorpionSaver.msi (PUP.Optional.Adpeak) -> No action taken.

C:\Windows\System32\AdpeakProxy.dll (PUP.Optional.Adpeak) -> No action taken.

C:\Windows\SysWOW64\AdpeakProxy.dll (PUP.Optional.Adpeak) -> No action taken.

C:\Users\Eric\AppData\Local\Temp\AdpeakProxyr.log (PUP.Optional.AdpeakProxy) -> No action taken.

C:\Windows\Temp\AdpeakProxy.log (PUP.Optional.AdpeakProxy) -> No action taken.

C:\Windows\Temp\AdpeakProxyr.log (PUP.Optional.AdpeakProxy) -> No action taken.

 

(end)

[Maniac]

Please update your Malwarebytes, perform a quick scan and everything found => Remove Selected .

[Maniac]

Are you still with me?

[AdvancedSetup]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!