Inactive-A Unknown virus on my mom's computer

[PsychopathUltra]

I ran Malewarebytes on my mom's computer recently and it reported hundreds of infections. These infections are reoccurring with every start up of the PC. Sometimes the infections are not as variant as before but they're still malignant. These are the infection logs I've just generated from her tower:

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17041 BrowserJavaVersion: 10.55.2
Run by Bailey Campbell at 9:16:50 on 2014-05-24
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3839.1940 [GMT -6:00]
.
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files (x86)\Voicent\Gateway\bin\vgate.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Voicent\Gateway\bin\vgate.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\eFax Messenger 4.4\J2GTray.exe
C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\PhotoSurfer\photosurferAutoAcquire.exe
C:\Program Files (x86)\Ask.com\Updater\Updater.exe
C:\Program Files (x86)\Voicent\Gateway\bin\vgate.exe
C:\Program Files (x86)\Zoom 3G+ Modem\Resource\driver\MCtlSuc.exe
C:\Program Files (x86)\eFax Messenger 4.4\J2GDllCmd.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskhost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uSearch Bar = Preserve
mStart Page = hxxp://search.coupons.com/
mURLSearchHooks: Productivity 3.1 Toolbar: {9427041a-a8dc-4d06-9a68-93873486e957} - C:\Program Files (x86)\Productivity_3.1\prxtbProd.dll
mURLSearchHooks: NCH EN Toolbar: {37483b40-c254-4a72-bda4-22ee90182c1e} - C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
mWinlogon: Userinit = userinit.exe,
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll
BHO: NCH EN Toolbar: {37483b40-c254-4a72-bda4-22ee90182c1e} - C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Productivity 3.1 Toolbar: {9427041a-a8dc-4d06-9a68-93873486e957} - C:\Program Files (x86)\Productivity_3.1\prxtbProd.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.0.443\AVG Secure Search_toolbar.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: Adblock Plus for IE Browser Helper Object: {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
TB: Productivity 3.1 Toolbar: {9427041A-A8DC-4D06-9A68-93873486E957} - C:\Program Files (x86)\Productivity_3.1\prxtbProd.dll
TB: NCH EN Toolbar: {37483B40-C254-4A72-BDA4-22EE90182C1E} - C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
TB: Productivity 3.1 Toolbar: {9427041a-a8dc-4d06-9a68-93873486e957} - C:\Program Files (x86)\Productivity_3.1\prxtbProd.dll
TB: NCH EN Toolbar: {37483b40-c254-4a72-bda4-22ee90182c1e} - C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.0.443\AVG Secure Search_toolbar.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
uRun: [Google Update] "C:\Users\Bailey Campbell\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
mRun: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun: [PhotoSurfer Auto Acquire] C:\Program Files (x86)\PhotoSurfer\photosurferAutoAcquire.exe
mRun: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
mRun: [VgateClient] C:\Program Files (x86)\Voicent\Gateway\bin\vgate.exe
mRun: [S302V] C:\Program Files (x86)\Zoom 3G+ Modem\Resource\driver\MctlSuc.exe
mRun: [3G Modem] <no file>
StartupFolder: C:\Users\BAILEY~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MONITO~1.LNK - C:\Windows\System32\RunDll32.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\EFAX44~1.LNK - C:\Program Files (x86)\eFax Messenger 4.4\J2GTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{7BED23D3-69F5-45C0-BFDC-5C8C427DFA7A} : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.0\ViProtocol.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Adblock Plus for IE Browser Helper Object: {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll
x64-Run: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [Logitech Download Assistant] C:\Windows\System32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
x64-DPF: {CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2013-3-31 82600]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2013-3-31 42664]
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2014-5-19 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2014-5-19 208416]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2012-1-17 55856]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2014-5-19 1039096]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2014-5-19 423240]
R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2013-2-22 50464]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-1-17 203776]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-5-19 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2014-5-19 79184]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-5-19 50344]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-4-11 1390720]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-4-11 1764992]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2013-4-22 822504]
R2 HP DS Service;HP DS Service;C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [2011-10-17 13824]
R2 HP LaserJet Service;HP LaserJet Service;C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2011-8-4 164352]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-6-26 523944]
R2 VoicentGateway;Voicent Gateway;C:\Program Files (x86)\Voicent\Gateway\bin\vgate.exe [2013-10-23 3303784]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2012-1-17 320040]
R3 LVUSBS64;Logitech USB Monitor Filter;C:\Windows\System32\drivers\LVUSBS64.sys [2008-7-26 50072]
R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2013-6-26 767144]
R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2013-6-26 273576]
R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2013-6-26 28840]
R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2013-6-26 23208]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-6-26 207528]
S2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-5-19 85328]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-4-1 183560]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-5-4 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-4-16 111616]
S3 lvpepf64;Volume Adapter;C:\Windows\System32\drivers\lv302a64.sys [2008-7-26 15768]
S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2008-7-26 790424]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [2013-9-6 288776]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-3-18 19456]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-3-18 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2014-3-18 30208]
S3 u302bus;HSPADataCard WMC Bus Driver (WDM);C:\Windows\System32\drivers\u302bus.sys [2013-11-12 154696]
S3 u302mdfl;HSPADataCard Modem Filter;C:\Windows\System32\drivers\u302mdfl.sys [2013-11-12 19016]
S3 u302mdm;HSPADataCard Modem Driver;C:\Windows\System32\drivers\u302mdm.sys [2013-11-12 175688]
S3 u302mgmt;HSPADataCard USB Device Management Drivers (WDM);C:\Windows\System32\drivers\u302mgmt.sys [2013-11-12 157256]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-2-8 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== File Associations ===============
.
FileExt: .txt: textfile="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [UserChoice]
FileExt: .js: jsfile="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe","%1"
ShellExec: dreamweaver.exe: open="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\dreamweaver.exe", "%1"
.
=============== Created Last 30 ================
.
2014-05-24 06:45:36 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E64B972C-2F94-4AF5-9CEA-4CC7CE559094}\offreg.dll
2014-05-23 18:07:22 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{7A14A434-0198-4A7F-9D71-DDF18F230FD2}
2014-05-23 17:57:24 10702536 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E64B972C-2F94-4AF5-9CEA-4CC7CE559094}\mpengine.dll
2014-05-22 17:19:43 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{3AECCDAC-61E3-4B6F-BB24-8F19CDE90D40}
2014-05-21 19:48:18 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{7A934081-3992-4F2F-902D-E83672CA50BD}
2014-05-21 08:51:50 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{0292E851-C55A-498E-A0A5-5C8F1883A8DF}
2014-05-20 16:59:59 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{15B27488-2421-4C03-9E24-B971C83C3770}
2014-05-20 03:31:54 -------- d-----w- C:\Users\Bailey Campbell\AppData\Roaming\AVAST Software
2014-05-20 03:29:28 85328 ----a-w- C:\Windows\System32\drivers\aswstm.sys
2014-05-20 03:29:28 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2014-05-20 03:29:28 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2014-05-20 03:29:28 423240 ----a-w- C:\Windows\System32\drivers\aswsp.sys.1400556580850
2014-05-20 03:29:28 208416 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2014-05-20 03:29:28 1039096 ----a-w- C:\Windows\System32\drivers\aswsnx.sys.1400556580850
2014-05-20 03:29:28 1039096 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2014-05-20 03:29:27 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2014-05-20 03:29:27 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2014-05-20 03:29:21 43152 ----a-w- C:\Windows\avastSS.scr
2014-05-20 03:28:59 -------- d-----w- C:\Program Files\AVAST Software
2014-05-20 03:28:20 -------- d-----w- C:\ProgramData\AVAST Software
2014-05-19 18:19:38 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{0D63D613-2F9A-4E4B-A61A-67085EBCDDE0}
2014-05-19 03:08:04 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{769C79CF-D4F5-4222-A692-264F4CB4A2B1}
2014-05-18 15:06:53 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{31A4CED9-BB10-4D4A-B722-FA5FF478ACE2}
2014-05-17 16:30:12 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{05FF312E-7FDE-4C01-989E-932DDFB6039F}
2014-05-17 00:05:27 -------- d-----w- C:\Program Files (x86)\Do It Again
2014-05-16 22:05:42 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{C6518B62-54C4-4EA5-A0B8-2BFE17CE1D17}
2014-05-16 10:04:29 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{A6387B1C-1E53-45FF-9ECA-3209574CBDDC}
2014-05-15 17:22:24 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{1E2F0FEB-A9CC-4CAE-BF0D-11E774342522}
2014-05-15 02:15:51 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-05-15 02:15:51 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-05-14 16:10:44 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{93AD14C7-ACE7-4927-B31F-723F3B4E4435}
2014-05-13 18:58:03 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{ABACD47C-5262-4D79-946F-696DAAEE23D2}
2014-05-13 06:32:19 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{BED4541B-490C-43D8-A27F-C0B15EDBDE9A}
2014-05-12 17:21:17 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{38EBA494-E67D-4AEF-B83F-52D52944EB85}
2014-05-11 17:30:59 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{22160C29-0D54-445D-AEC0-81AE8037D0D4}
2014-05-10 18:20:27 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{0C8A6EA6-3565-4145-AFF2-5F7A5D5C2C76}
2014-05-09 15:49:37 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{97A8BFDD-E283-41DF-B915-C436DA448C04}
2014-05-08 15:46:44 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{EC892847-19A1-493E-9351-56170BFDB81D}
2014-05-08 02:57:39 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{E5709BA2-D0F0-47C5-8B1C-2146E2E2D5ED}
2014-05-07 14:56:20 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{06217678-CAF9-403C-A802-D73FDDFF7A4A}
2014-05-06 18:05:37 -------- d-s---w- C:\Windows\System32\CompatTel
2014-05-06 15:37:19 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{E618E7AE-48D9-4B4B-8805-D543C109C75D}
2014-05-05 18:38:24 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{0B34AF57-61F6-4292-81BA-0940BEAE0341}
2014-05-05 06:37:59 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{86A6B642-57C9-4403-A29D-121C8786D057}
2014-05-03 18:48:44 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{C11B1336-E5F6-4B01-80CD-79E3BC736304}
2014-05-02 16:13:33 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{7BC3FFDB-6031-4A0B-A3F6-0690F10FC0A1}
2014-05-01 17:04:45 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{B3AE074B-F07C-4589-9EAC-89D8FF86346D}
2014-04-30 18:03:01 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{CFCC382B-83F6-4EFD-8F99-6D0162B55F9F}
2014-04-30 06:02:36 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{59491364-0704-471D-A1ED-7920F6C50B03}
2014-04-29 18:02:10 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{D2AB0A98-267E-49BC-919D-21EDCE660C24}
2014-04-28 20:03:01 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{EC464C62-0E97-4C1F-900B-E8404165E803}
2014-04-28 07:32:40 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{567D01EA-2260-4977-A2B6-10A453FB7F43}
2014-04-27 19:30:30 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{DCA5BE4E-0511-4BF5-A1CE-F7064FCDAD74}
2014-04-27 18:12:07 -------- d-----w- C:\ProgramData\AVG Secure Search
2014-04-26 17:59:42 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{9CE9E6AB-7DEA-4AC3-8387-805EAB9B4437}
2014-04-25 16:59:34 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{F7AE1784-76E9-4B25-B879-7A851FE4C15A}
2014-04-24 20:34:09 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-04-24 19:22:35 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{6CBF9E6F-F425-4031-8B3D-879E3B516725}
2014-04-24 17:28:45 -------- d-----w- C:\Users\Bailey Campbell\AppData\Local\{904454CA-BF91-468B-8387-B172D5877572}
.
==================== Find3M ====================
.
2014-05-15 18:09:09 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-05-15 18:09:09 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-05-09 22:59:01 135 ----a-w- C:\Users\Bailey Campbell\AppData\Roaming\redline2stapler.tmp
2014-05-09 06:14:03 477184 ----a-w- C:\Windows\System32\aepdu.dll
2014-05-09 06:11:23 424448 ----a-w- C:\Windows\System32\aeinv.dll
2014-04-27 18:12:04 50464 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
2014-04-15 08:34:10 1070232 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2014-04-12 02:22:05 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-04-12 02:22:05 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 02:19:38 29184 ----a-w- C:\Windows\System32\sspisrv.dll
2014-04-12 02:19:38 136192 ----a-w- C:\Windows\System32\sspicli.dll
2014-04-12 02:19:37 28160 ----a-w- C:\Windows\System32\secur32.dll
2014-04-12 02:19:32 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-04-12 02:19:05 31232 ----a-w- C:\Windows\System32\lsass.exe
2014-04-12 02:12:06 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-04-12 02:10:56 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-03-31 15:35:08 270496 ------w- C:\Windows\System32\MpSigStub.exe
2014-03-06 09:31:33 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-03-06 08:59:04 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-03-06 08:57:34 548352 ----a-w- C:\Windows\System32\vbscript.dll
2014-03-06 08:57:20 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-03-06 08:29:40 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-03-06 08:29:14 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-03-06 08:28:15 752640 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-03-06 08:15:54 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-03-06 08:11:41 5784064 ----a-w- C:\Windows\System32\jscript9.dll
2014-03-06 08:02:34 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-03-06 08:02:33 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-03-06 08:01:01 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-03-06 07:56:43 38400 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-03-06 07:46:36 4254720 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-03-06 07:38:13 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-03-06 07:36:40 592896 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-03-06 07:13:43 32256 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-03-06 07:11:15 2043904 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-03-06 06:40:39 1967104 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-03-06 06:22:40 2260480 ----a-w- C:\Windows\System32\wininet.dll
2014-03-06 05:41:49 1789440 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-03-04 09:47:01 5550016 ----a-w- C:\Windows\System32\ntoskrnl.exe
2014-03-04 09:44:21 362496 ----a-w- C:\Windows\System32\wow64win.dll
2014-03-04 09:44:21 243712 ----a-w- C:\Windows\System32\wow64.dll
2014-03-04 09:44:21 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2014-03-04 09:44:20 39936 ----a-w- C:\Windows\System32\wincredprovider.dll
2014-03-04 09:44:10 210944 ----a-w- C:\Windows\System32\wdigest.dll
2014-03-04 09:44:08 86528 ----a-w- C:\Windows\System32\TSpkg.dll
2014-03-04 09:44:06 340992 ----a-w- C:\Windows\System32\schannel.dll
2014-03-04 09:44:03 722944 ----a-w- C:\Windows\System32\objsel.dll
2014-03-04 09:44:03 314880 ----a-w- C:\Windows\System32\msv1_0.dll
2014-03-04 09:44:03 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2014-03-04 09:44:00 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-03-04 09:44:00 424960 ----a-w- C:\Windows\System32\KernelBase.dll
2014-03-04 09:43:56 57344 ----a-w- C:\Windows\System32\cngprovider.dll
2014-03-04 09:43:56 52736 ----a-w- C:\Windows\System32\dpapiprovider.dll
2014-03-04 09:43:56 44544 ----a-w- C:\Windows\System32\dimsroam.dll
2014-03-04 09:43:56 22016 ----a-w- C:\Windows\System32\credssp.dll
2014-03-04 09:43:55 56832 ----a-w- C:\Windows\System32\adprovider.dll
2014-03-04 09:43:55 53760 ----a-w- C:\Windows\System32\capiprovider.dll
2014-03-04 09:43:50 455168 ----a-w- C:\Windows\System32\winlogon.exe
2014-03-04 09:20:11 3969984 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2014-03-04 09:20:11 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2014-03-04 09:16:54 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2014-03-04 09:16:18 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2014-03-04 09:16:18 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2014-03-04 08:09:30 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2014-03-04 08:09:29 2048 ----a-w- C:\Windows\SysWow64\user.exe
.
============= FINISH: 9:17:30.04 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 2/8/2012 12:33:38 AM
System Uptime: 5/23/2014 10:13:38 PM (11 hours ago)
.
Motherboard: Dell Inc. | | 04GJJT
Processor: AMD Athlon(tm) II X2 250 Processor | CPU 1 | 3000/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 451 GiB total, 334.961 GiB free.
D: is CDROM ()
E: is Removable
F: is Removable
G: is Removable
H: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP301: 4/29/2014 12:04:24 PM - Windows Update
RP302: 5/2/2014 10:36:48 PM - Windows Update
RP303: 5/6/2014 12:05:23 PM - Windows Update
RP304: 5/14/2014 7:48:52 PM - Windows Update
RP305: 5/14/2014 8:11:27 PM - Windows Update
RP306: 5/16/2014 6:05:05 PM - Installed Do It Again
RP307: 5/19/2014 9:28:34 PM - avast! antivirus system restore point
RP308: 5/21/2014 2:53:58 AM - Windows Update
.
==== Installed Programs ======================
.
64 Bit HP CIO Components Installer
Acoustica Effects Pack
Acoustica Mixcraft 3.1
Adblock Plus for IE
Adblock Plus for IE (32-bit and 64-bit)
Adobe AIR
Adobe Creative Cloud
Adobe Download Assistant
Adobe Dreamweaver CS6
Adobe Flash Player 13 ActiveX
Adobe Flash Player 13 Plugin
Adobe Help Manager
Adobe InDesign CS6
Adobe Reader X (10.1.10) MUI
Adobe Widget Browser
ArcSoft ShowBiz
Ask Toolbar
Ask Toolbar Updater
ATI Catalyst Control Center
avast! Free Antivirus
AVG Security Toolbar
Bejeweled 2 Deluxe
Bing Bar
Bing Rewards Client Installer
Blackhawk Striker 2
Bluebeam PDF Revu x64 v6.5.4
Bounce Symphony
Build-a-lot 2
Cake Mania
Calyx LoanBridge 5.3
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
Chuzzle Deluxe
Codec Pack Packages
Coupon Printer for Windows
D3DX10
DC-Bass Source 1.3.0
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup
Dell Edoc Viewer
Dell Getting Started Guide
Dell MusicStage
Dell PhotoStage
Dell Stage
Dell VideoStage
Diner Dash 2 Restaurant Rescue
DirectVobSub 2.40.4209
DivX Setup
Do It Again
Dora's World Adventure
eBay
eFax Messenger
Escape Whisper Valley (TM)
Farm Frenzy
FATE
ffdshow v1.1.4399 [2012-03-22]
FileZilla Client 3.5.3
Final Drive Fury
Final Drive Nitro
Google Chrome
Google Earth Plug-in
Google Talk Plugin
Google Update Helper
Haali Media Splitter
Hewlett-Packard ACLM.NET v1.1.0.0
hp LaserJet-all-in-one
HP LaserJet 400 M401
HP LaserJet 400 M401 HP Device Toolbox
HP Product Detection
HP Product FWUpdater
HP Unified IO
HP Update
hpbDSService
hpbM401DSService
HPDXP
HPLaserJet400-M401_HelpLearnCenter_SI
HPLJDXPHelper
HPLJUTCore
HPLJUTM401
hppLaserJetService
hppM401LaserJetService
hpStatusAlerts
hpStatusAlertsM401
Itibiti RTC
Java 7 Update 55
Java Auto Updater
Jewel Quest
Jewel Quest Solitaire 2
join.me
Junk Mail filter update
Lagarith Lossless Codec (1.3.27)
LAME v3.99.3 (for Windows)
LJDXPHelperUI
Luxor
Macromedia Contribute 3.11
Macromedia Dreamweaver 8
Macromedia Extension Manager
Macromedia Fireworks 8
Macromedia Flash 8
Macromedia Flash 8 Video Encoder
Macromedia Flash Player 8
Malwarebytes Anti-Malware version 1.75.0.1300
McAfee Security Scan Plus
Mesh Runtime
Messenger Companion
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Camera Codec Pack
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Click-to-Run 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Home and Student 2010
Microsoft Office Office 64-bit Components 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared 64-bit MUI (English) 2010
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Single Image 2010
Microsoft Office Word MUI (English) 2010
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft WSE 2.0 SP3 Runtime
Microsoft_VC80_CRT_x86
Microsoft_VC90_CRT_x86
MSVCRT
MSVCRT Redists
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Namco All-Stars PAC-MAN
NCH EN Toolbar
OpenSource Flash Video Splitter 1.0.0.5
Penguins!
PhotoSurfer
Plants vs. Zombies - Game of the Year
Point
Poker Superstars III
Polar Bowler
Polar Golfer
Productivity 3.1 Toolbar
QFolder
Samantha Swift
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft Excel 2010 (KB2826033) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2826023) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2826035) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2878284) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition
Security Update for Microsoft Word 2010 (KB2863926) 32-Bit Edition
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
ShowBiz
Skins
Skype Click to Call
Skype™ 6.14
Stamps.com
Stamps.com Application Support for Microsoft Outlook 2000-2010
Stamps.com support for Microsoft Outlook 2000-2010
Stamps.com Web Postage Plug-in
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition
Update Installer for WildTangent Games App
VC80CRTRedist - 8.0.50727.6195
Vegas Pro 12.0 (64-bit)
Virtual Villagers 4 - The Tree of Life
Visual Studio 2010 x64 Redistributables
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
Voicent AgentDialer
Voicent BroadcastByEmail
Voicent BroadcastByPhone
Voicent BroadcastBySMS
Voicent Call Center CRM
Voicent CallCenterManager
Voicent Dashboard
Voicent Gateway
Wedding Dash - Ready, Aim, Love!
WildTangent Games
WildTangent Games App (Dell Games)
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
XStandard
Zoom 3G+ Modem version 1.6
Zuma Deluxe
.
==== Event Viewer Messages From Past Week ========
.
5/23/2014 3:35:24 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avast! Antivirus service.
5/20/2014 1:38:42 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
.
==== End Of File ===========================

 

[PsychopathUltra]

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.05.19.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17107
Bailey Campbell :: BAILEYCAMPBELL [administrator]

5/19/2014 12:55:42 AM
mbam-log-2014-05-19 (00-55-42).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 656030
Time elapsed: 1 hour(s), 31 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 24
HKCR\CLSID\{8660E5B3-6C41-44DE-8503-98D99BBECD41} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\ComObject.DeskbarEnabler.1 (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\ComObject.DeskbarEnabler (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\Toolbar3.TBSB07898.1 (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\Toolbar3.TBSB07898 (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\TBSB07898.TBSB07898.3 (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\TBSB07898.TBSB07898 (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{8660E5B3-6C41-44DE-8503-98D99BBECD41} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8660E5B3-6C41-44DE-8503-98D99BBECD41} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\TbCommonUtils.CommonUtils.1 (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\TbCommonUtils.CommonUtils (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKCR\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CouponBar5.0.0.4 (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.

Registry Values Detected: 4
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{8660E5B3-6C41-44DE-8503-98D99BBECD41} (PUP.Optional.CouponBar.A) -> Data: ³å`†AlÞD…˜Ù›¾ÍA -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{8660E5B3-6C41-44DE-8503-98D99BBECD41} (PUP.Optional.CouponBar.A) -> Data: -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{8660E5B3-6C41-44DE-8503-98D99BBECD41} (PUP.Optional.CouponBar.A) -> Data: -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{8660E5B3-6C41-44DE-8503-98D99BBECD41} (PUP.Optional.CouponBar.A) -> Data: -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

 

[PsychopathUltra]

Folders Detected: 88
C:\Program Files (x86)\Coupons.com CouponBar (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\chrome (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\firefox (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\firefox\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D} (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0 (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\adapter (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\abstractbutton (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\abstractbutton\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\alert (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\alert\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedhtml (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedhtml\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedhtml\html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedhtml\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedscript (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedscript\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedscript\html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedscript\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\flare (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\flare\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\flare\icons (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\generic (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\generic\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\link (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\link\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\images (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\rss (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\rss\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\thirdparty (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\thirdparty\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\uninstall (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\uninstall\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\weather (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\weather\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\common (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\radio (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\radio\css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\radio\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\rss (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\rss\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\test (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\topapps (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\topapps\css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\topapps\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\weather (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\weather\css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\weather\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api\window (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\moviereviews (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\moviereviews\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\moviereviews\css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\moviereviews\html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\moviereviews\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio\css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio\foreground (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio\radioWrapper (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\search (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\search\background (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\search\html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\icons (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\plugins (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\shared (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.

 

[PsychopathUltra]

Files Detected: 233
C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\plugins\65ChromePlugIn.dll (PUP.Optional.Mindspark) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\plugins\SearchControl.dll (PUP.Optional.Mindspark) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Temp\mag9901.tmp\UPDATER.EXE (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\Downloads\Firefox (1).exe (PUP.Optional.OutBrowse) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\Downloads\Firefox.exe (PUP.Optional.OutBrowse) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fromdoctopdf.dl.tb.ask.com_0.localstorage (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fromdoctopdf.dl.tb.ask.com_0.localstorage-journal (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dhhjmlmdpcpiojiffodbldlkgcnaeogp_0.localstorage (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dhhjmlmdpcpiojiffodbldlkgcnaeogp_0.localstorage-journal (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\arrow_refresh.png (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\basis.xml (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\cog.png (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\computer_delete.png (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\coupons.com.dll (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\dataLoader.js (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\icons3.bmp (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\info.txt (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\login.png (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\logo.png (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\lua5.1.dll (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\search.png (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\TbCommonUtils.dll (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\TbHelper2.exe (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\todays_deals.png (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\uninstall.exe (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\update.exe (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\version.txt (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\chrome\coupons.com.crx (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\firefox\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D}\coupons.com.xpi (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG1.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG1.JPG (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG10.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG2.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG2.JPG (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG3.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG3.JPG (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG4.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG5.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG6.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG7.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG8.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\IRIMG9.BMP (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\uninstall.dat (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall\uninstall.xml (PUP.Optional.CouponBar.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\buildVars.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\config.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\contentScript.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\contentScript.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\extension_toolbar_api.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\initWidgetWindow.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\manifest.json (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\options.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\superFrame.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\toolbar.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\toolbar.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\toolbarUI.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\toolbarUI.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\toolbarUI.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\adapter\adapterUtil.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\adapter\widget-adapter.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\abstractbutton\background\abstractButton.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\alert\background\alertButton.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedhtml\background\embedHtmlWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedhtml\html\embedHtmlTemplate.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedhtml\html\innerEmbedHtmlTemplate.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedhtml\js\embedHtmlUI.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedscript\background\embedScriptWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedscript\html\embedScriptTemplate.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedscript\html\innerEmbedScriptTemplate.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\embedscript\js\embedScriptUI.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\flare\background\FlareWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\flare\icons\Icon_Flare_blue.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\flare\icons\Icon_Flare_pink.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\flare\icons\Thumbs.db (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\generic\background\GenericWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\link\background\linkButton.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\README.txt (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\background\menuButton.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\css\menuframe.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\html\menuframe.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\images\right_arrow.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\images\right_arrow_white.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\js\jquery-1.7.1.min.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\js\menuframe.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\js\query-string.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\menu\js\underscore-1.3.1.min.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\rss\background\RssWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\thirdparty\background\thirdPartyWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\uninstall\background\uninstallButton.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\components\weather\background\weatherButton.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\blacklistService.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\common.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\dynamic.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\enableDetect.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\eventListening.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\global.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\jquery-1.7.1.min.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\list-interaction.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\messageEventListener.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\navRedirector.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\paramReplacer.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\PartnerId.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\set.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\underscore-1.3.1.min.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\underscore-1.5.2.min.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\js\unifiedLogging.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widget-context-1.0.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\common\common.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\common\eventListening.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\common\jquery-1.7.1.min.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\common\list-interaction.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\common\set.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\common\underscore-1.3.1.min.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\radio\radio-widget.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\radio\css\radio-widget.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\radio\js\radio-custom.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\radio\js\radio-parser.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\radio\js\radio-widget-ui.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\radio\js\radio-widget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\rss\rssWidget.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\rss\js\rss-widget-custom.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\rss\js\rss-widget-parse.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\rss\js\rss-widget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\test\invalid.json (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\test\jquery.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\test\qunit.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\test\qunit.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\test\resource.json (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\test\resource.xml (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\test\testWidget.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\test\testWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\topapps\widget.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\topapps\css\widget.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\topapps\js\nanigans-topapps-feed.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\topapps\js\topapps-config.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\topapps\js\widget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\weather\weatherButton.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\weather\css\weatherButton.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\common\widget-api\widgets\weather\js\weather.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api\background\ApiBasedWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api\background\widget-api-impl.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api\window\hiddenWidgetWindow.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api\window\hiddenWidgetWindow.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api\window\hiddenWidgetWindowInit.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api\window\widgetWindow.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\api\window\widgetWindow.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\background\updateSearch.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\background\updateSearchPromptBg.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\07_buttons2.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\08_buttons2.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\defaultSearchModal.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\defaultSearchModalInjector.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\defaultSearchModalInjector.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\tvf_btn_ok.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\tvf_btn_ok2.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\tvf_restart_alert_icon.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\tvf_restart_icon.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\defaultSearch\foreground\updateSearchPromptFg.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\moviereviews\background\MovieReviewsWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\moviereviews\css\movieReviews.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\moviereviews\html\movieReviews.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\moviereviews\js\movieReviews.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio\background\RadioWidget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio\css\toolbar-item.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio\foreground\button.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio\radioWrapper\radioWrapper.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\radio\radioWrapper\radioWrapper.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\search\background\searchBox.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\search\html\searchSuggestions.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\search\html\searchSuggestions.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\search\html\searchSuggestions.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\search\html\searchSuggestionsInit.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\css\supertab.css (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\html\supertab.html (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\js\newtabfork.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\js\reporting.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\js\srchsugg.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\js\supertab.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\js\unifiedLogging.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\components\supertab\js\__utm.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\icons\arrowSprite.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\icons\icon128.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\icons\icon16.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\icons\icon19disabled.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\icons\icon19on.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\icons\icon48.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\icons\tb_icon_search_disappearing_ask.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\221868101.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\221868103.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\221868104.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\221868129.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\221868130.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\221868131.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\221868145.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\221868170.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\down_arrow.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\IDR_PRODUCT_LOGO_16.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\IDR_WEBSTORE_ICON.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\magnifying_glass.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\RadioPlayerSprite.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\search_button.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\tvf_icon_guide.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\tvf_logo.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\images\wrench.png (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\chromeUtils.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\exeManager.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\exePackageManager.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\focusManager.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\globalBlacklistManager.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\messaging.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\mutation_summary-min.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\mutation_summary.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\newTabInfo.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\options.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\readLocalStorage.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\reservespacefortoolbar.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\reservespaceifenabled.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\scriptInjector.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\searchContext.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\toolbarCookieParser.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\toolbarPreinit.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\underscore-1.3.1.min.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\URILoaderContentScript.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\Widget.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\widgetFactory.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\js\widgetWindowManager.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\plugins\searchupdated (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\plugins\searchupdater (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\shared\rsvp-latest.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.

 

[PsychopathUltra]

C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\shared\unifiedLogging.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\shared\universalConsole.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.
C:\Users\Bailey Campbell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjmlmdpcpiojiffodbldlkgcnaeogp\8.27.3.62724_0\shared\utils.js (PUP.Optional.MindSpark.A) -> Quarantined and deleted successfully.

(end)

 

[Broni]

Please, observe following rules:

• Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
• If you're stuck, or you're not sure about certain step, always ask before doing anything else.
• Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
• Never run more than one scan at a time.
• Keep updating me regarding your computer behavior, good, or bad.
• The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
• If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
• I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

===================================

It looks to me like your mom is little bit too click happy

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2

• Close all the running programs
• Windows Vista/7/8 users: right click on RogueKiller.exe, click Run as Administrator
• Otherwise just double-click on RogueKiller.exe
• Pre-scan will start. Let it finish.
• Click on SCAN button.
• Wait until the Status box shows Scan Finished
• Click on Delete.
• Wait until the Status box shows Deleting Finished.
• Click on Report and copy/paste the content of the Notepad into your next reply.
• RKreport.txt could also be found on your desktop.
• If more than one log is produced post all logs.
• If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

Create new restore point before proceeding with the next step....
How to: http://www.smartestcomputing.us.com/topic/63983-how-to-create-new-restore-point-all-windows/

Download Malwarebytes Anti-Rootkit (MBAR) from HERE

• Unzip downloaded file.
• Open the folder where the contents were unzipped and run mbar.exe
• Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
• Click on the Cleanup button to remove any threats and reboot if prompted to do so.
• Wait while the system shuts down and the cleanup process is performed.
• Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
• When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt

 

[PsychopathUltra]

Malwarebytes Anti-Rootkit did not detect anything. However, Rogue Killer did:

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Bailey Campbell [Admin rights]
Mode : Remove -- Date : 05/24/2014 22:12:58
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 10 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : DisableTaskMgr (0) -> DELETED
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableTaskMgr (0) -> [0x2] The system cannot find the file specified.
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> [0x2] The system cannot find the file specified.
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> REPLACED (1)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 3 ¤¤¤
[V1][SUSP PATH] DSite.job : C:\Users\BAILEY~1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE - /Check [x] -> DELETED
[V2][SUSP PATH] DealPly : C:\Users\BAILEY~1\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE - /Check [x] -> DELETED
[V2][SUSP PATH] DSite : C:\Users\BAILEY~1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE - /Check [x] -> ERROR DELETING TASK

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤
[Address] IAT @iexplore.exe (GetProcAddress) : KERNEL32.dll -> HOOKED (C:\Program Files (x86)\Internet Explorer\IEShims.dll @ 0x6DB82888)
[Address] IAT @iexplore.exe (StrStrIW) : api-ms-win-downlevel-shlwapi-l1-1-0.dll -> HOOKED (C:\Windows\syswow64\shlwapi.DLL @ 0x762C46E9)
[Address] EAT @iexplore.exe (BeginBufferedAnimation) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75DF38)
[Address] EAT @iexplore.exe (BeginBufferedPaint) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75B741)
[Address] EAT @iexplore.exe (BeginPanningFeedback) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7776AF)
[Address] EAT @iexplore.exe (BufferedPaintClear) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75BBDB)
[Address] EAT @iexplore.exe (BufferedPaintInit) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75B8D4)
[Address] EAT @iexplore.exe (BufferedPaintRenderAnimation) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75DE83)
[Address] EAT @iexplore.exe (BufferedPaintSetAlpha) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CE19)
[Address] EAT @iexplore.exe (BufferedPaintStopAllAnimations) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75E428)
[Address] EAT @iexplore.exe (BufferedPaintUnInit) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C767525)
[Address] EAT @iexplore.exe (CloseThemeData) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C751FA1)
[Address] EAT @iexplore.exe (DrawThemeBackground) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75D464)
[Address] EAT @iexplore.exe (DrawThemeBackgroundEx) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C76436D)
[Address] EAT @iexplore.exe (DrawThemeEdge) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C01C)
[Address] EAT @iexplore.exe (DrawThemeIcon) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77D123)
[Address] EAT @iexplore.exe (DrawThemeParentBackground) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75E776)
[Address] EAT @iexplore.exe (DrawThemeParentBackgroundEx) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75E5C5)
[Address] EAT @iexplore.exe (DrawThemeText) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75DB21)
[Address] EAT @iexplore.exe (DrawThemeTextEx) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75A70C)
[Address] EAT @iexplore.exe (EnableThemeDialogTexture) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C76786D)
[Address] EAT @iexplore.exe (EnableTheming) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C9FF)
[Address] EAT @iexplore.exe (EndBufferedAnimation) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75ACE8)
[Address] EAT @iexplore.exe (EndBufferedPaint) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75ACE8)
[Address] EAT @iexplore.exe (EndPanningFeedback) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77762C)
[Address] EAT @iexplore.exe (GetBufferedPaintBits) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75CF26)
[Address] EAT @iexplore.exe (GetBufferedPaintDC) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CDCF)
[Address] EAT @iexplore.exe (GetBufferedPaintTargetDC) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CD86)
[Address] EAT @iexplore.exe (GetBufferedPaintTargetRect) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C893)
[Address] EAT @iexplore.exe (GetCurrentThemeName) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7663AE)
[Address] EAT @iexplore.exe (GetThemeAppProperties) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75EBD6)
[Address] EAT @iexplore.exe (GetThemeBackgroundContentRect) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75DA9E)
[Address] EAT @iexplore.exe (GetThemeBackgroundExtent) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C767155)
[Address] EAT @iexplore.exe (GetThemeBackgroundRegion) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C760190)
[Address] EAT @iexplore.exe (GetThemeBitmap) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C754B9C)
[Address] EAT @iexplore.exe (GetThemeBool) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C756651)
[Address] EAT @iexplore.exe (GetThemeColor) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7527C0)
[Address] EAT @iexplore.exe (GetThemeDocumentationProperty) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C346)
[Address] EAT @iexplore.exe (GetThemeEnumValue) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7527C0)
[Address] EAT @iexplore.exe (GetThemeFilename) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B997)
[Address] EAT @iexplore.exe (GetThemeFont) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7676A2)
[Address] EAT @iexplore.exe (GetThemeInt) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7527C0)
[Address] EAT @iexplore.exe (GetThemeIntList) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B86E)
[Address] EAT @iexplore.exe (GetThemeMargins) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C752F97)
[Address] EAT @iexplore.exe (GetThemeMetric) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7655B4)
[Address] EAT @iexplore.exe (GetThemePartSize) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75289F)
[Address] EAT @iexplore.exe (GetThemePosition) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B80D)
[Address] EAT @iexplore.exe (GetThemePropertyOrigin) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C760923)
[Address] EAT @iexplore.exe (GetThemeRect) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B936)
[Address] EAT @iexplore.exe (GetThemeStream) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B8CF)
[Address] EAT @iexplore.exe (GetThemeString) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B7A1)
[Address] EAT @iexplore.exe (GetThemeSysBool) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CB86)
[Address] EAT @iexplore.exe (GetThemeSysColor) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C765530)
[Address] EAT @iexplore.exe (GetThemeSysColorBrush) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CA32)
[Address] EAT @iexplore.exe (GetThemeSysFont) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C3D8)
[Address] EAT @iexplore.exe (GetThemeSysInt) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C5E7)
[Address] EAT @iexplore.exe (GetThemeSysSize) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CC61)
[Address] EAT @iexplore.exe (GetThemeSysString) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C553)
[Address] EAT @iexplore.exe (GetThemeTextExtent) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7589FE)
[Address] EAT @iexplore.exe (GetThemeTextMetrics) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C76778C)
[Address] EAT @iexplore.exe (GetThemeTransitionDuration) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75E1A1)
[Address] EAT @iexplore.exe (GetWindowTheme) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C76535B)
[Address] EAT @iexplore.exe (HitTestThemeBackground) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C762DC1)
[Address] EAT @iexplore.exe (IsAppThemed) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C767009)
[Address] EAT @iexplore.exe (IsCompositionActive) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7565DF)
[Address] EAT @iexplore.exe (IsThemeActive) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C766F36)
[Address] EAT @iexplore.exe (IsThemeBackgroundPartiallyTransparent) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75281C)
[Address] EAT @iexplore.exe (IsThemeDialogTextureEnabled) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CB3F)
[Address] EAT @iexplore.exe (IsThemePartDefined) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7530CF)
[Address] EAT @iexplore.exe (OpenThemeData) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C755F29)
[Address] EAT @iexplore.exe (OpenThemeDataEx) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7606FE)
[Address] EAT @iexplore.exe (SetThemeAppProperties) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CCEC)
[Address] EAT @iexplore.exe (SetWindowTheme) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C767AFC)
[Address] EAT @iexplore.exe (SetWindowThemeAttribute) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C759E39)
[Address] EAT @iexplore.exe (ThemeInitApiHook) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C754571)
[Address] EAT @iexplore.exe (UpdatePanningFeedback) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7775ED)

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST350041 3AS SATA Disk Device +++++
--- User ---
[MBR] ef914a62f464b077caa3aee7653f89c0
[BSP] 56143746618d53fdfae99ef749d0e61d : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 15166 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 31141888 | Size: 461733 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Generic- SD/MMC USB Device +++++
Error reading User MBR! ([0x15] The device is not ready. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) Generic- Compact Flash USB Device +++++
Error reading User MBR! ([0x15] The device is not ready. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

+++++ PhysicalDrive3: (\\.\PHYSICALDRIVE3 @ USB) Generic- SM/xD Picture USB Device +++++
Error reading User MBR! ([0x15] The device is not ready. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

+++++ PhysicalDrive4: (\\.\PHYSICALDRIVE4 @ USB) Generic- MS/MS-Pro USB Device +++++
Error reading User MBR! ([0x15] The device is not ready. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

Finished : << RKreport[0]_D_05242014_221258.txt >>
RKreport[0]_S_05242014_221149.txt


RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Bailey Campbell [Admin rights]
Mode : Scan -- Date : 05/24/2014 22:11:49
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 10 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : DisableTaskMgr (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableTaskMgr (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 3 ¤¤¤
[V1][SUSP PATH] DSite.job : C:\Users\BAILEY~1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE - /Check [x] -> FOUND
[V2][SUSP PATH] DealPly : C:\Users\BAILEY~1\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE - /Check [x] -> FOUND
[V2][SUSP PATH] DSite : C:\Users\BAILEY~1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE - /Check [x] -> FOUND

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤
[Address] IAT @iexplore.exe (GetProcAddress) : KERNEL32.dll -> HOOKED (C:\Program Files (x86)\Internet Explorer\IEShims.dll @ 0x6DB82888)
[Address] IAT @iexplore.exe (StrStrIW) : api-ms-win-downlevel-shlwapi-l1-1-0.dll -> HOOKED (C:\Windows\syswow64\shlwapi.DLL @ 0x762C46E9)
[Address] EAT @iexplore.exe (BeginBufferedAnimation) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75DF38)
[Address] EAT @iexplore.exe (BeginBufferedPaint) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75B741)
[Address] EAT @iexplore.exe (BeginPanningFeedback) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7776AF)
[Address] EAT @iexplore.exe (BufferedPaintClear) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75BBDB)
[Address] EAT @iexplore.exe (BufferedPaintInit) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75B8D4)
[Address] EAT @iexplore.exe (BufferedPaintRenderAnimation) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75DE83)
[Address] EAT @iexplore.exe (BufferedPaintSetAlpha) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CE19)
[Address] EAT @iexplore.exe (BufferedPaintStopAllAnimations) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75E428)
[Address] EAT @iexplore.exe (BufferedPaintUnInit) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C767525)
[Address] EAT @iexplore.exe (CloseThemeData) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C751FA1)
[Address] EAT @iexplore.exe (DrawThemeBackground) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75D464)
[Address] EAT @iexplore.exe (DrawThemeBackgroundEx) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C76436D)
[Address] EAT @iexplore.exe (DrawThemeEdge) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C01C)
[Address] EAT @iexplore.exe (DrawThemeIcon) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77D123)
[Address] EAT @iexplore.exe (DrawThemeParentBackground) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75E776)
[Address] EAT @iexplore.exe (DrawThemeParentBackgroundEx) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75E5C5)
[Address] EAT @iexplore.exe (DrawThemeText) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75DB21)
[Address] EAT @iexplore.exe (DrawThemeTextEx) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75A70C)
[Address] EAT @iexplore.exe (EnableThemeDialogTexture) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C76786D)
[Address] EAT @iexplore.exe (EnableTheming) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C9FF)
[Address] EAT @iexplore.exe (EndBufferedAnimation) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75ACE8)
[Address] EAT @iexplore.exe (EndBufferedPaint) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75ACE8)
[Address] EAT @iexplore.exe (EndPanningFeedback) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77762C)
[Address] EAT @iexplore.exe (GetBufferedPaintBits) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75CF26)
[Address] EAT @iexplore.exe (GetBufferedPaintDC) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CDCF)
[Address] EAT @iexplore.exe (GetBufferedPaintTargetDC) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CD86)
[Address] EAT @iexplore.exe (GetBufferedPaintTargetRect) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C893)
[Address] EAT @iexplore.exe (GetCurrentThemeName) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7663AE)
[Address] EAT @iexplore.exe (GetThemeAppProperties) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75EBD6)
[Address] EAT @iexplore.exe (GetThemeBackgroundContentRect) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75DA9E)
[Address] EAT @iexplore.exe (GetThemeBackgroundExtent) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C767155)
[Address] EAT @iexplore.exe (GetThemeBackgroundRegion) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C760190)
[Address] EAT @iexplore.exe (GetThemeBitmap) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C754B9C)
[Address] EAT @iexplore.exe (GetThemeBool) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C756651)
[Address] EAT @iexplore.exe (GetThemeColor) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7527C0)
[Address] EAT @iexplore.exe (GetThemeDocumentationProperty) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C346)
[Address] EAT @iexplore.exe (GetThemeEnumValue) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7527C0)
[Address] EAT @iexplore.exe (GetThemeFilename) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B997)
[Address] EAT @iexplore.exe (GetThemeFont) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7676A2)
[Address] EAT @iexplore.exe (GetThemeInt) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7527C0)
[Address] EAT @iexplore.exe (GetThemeIntList) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B86E)
[Address] EAT @iexplore.exe (GetThemeMargins) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C752F97)
[Address] EAT @iexplore.exe (GetThemeMetric) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7655B4)
[Address] EAT @iexplore.exe (GetThemePartSize) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75289F)
[Address] EAT @iexplore.exe (GetThemePosition) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B80D)
[Address] EAT @iexplore.exe (GetThemePropertyOrigin) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C760923)
[Address] EAT @iexplore.exe (GetThemeRect) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B936)
[Address] EAT @iexplore.exe (GetThemeStream) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B8CF)
[Address] EAT @iexplore.exe (GetThemeString) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77B7A1)
[Address] EAT @iexplore.exe (GetThemeSysBool) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CB86)
[Address] EAT @iexplore.exe (GetThemeSysColor) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C765530)
[Address] EAT @iexplore.exe (GetThemeSysColorBrush) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CA32)
[Address] EAT @iexplore.exe (GetThemeSysFont) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C3D8)
[Address] EAT @iexplore.exe (GetThemeSysInt) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C5E7)
[Address] EAT @iexplore.exe (GetThemeSysSize) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CC61)
[Address] EAT @iexplore.exe (GetThemeSysString) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77C553)
[Address] EAT @iexplore.exe (GetThemeTextExtent) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7589FE)
[Address] EAT @iexplore.exe (GetThemeTextMetrics) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C76778C)
[Address] EAT @iexplore.exe (GetThemeTransitionDuration) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75E1A1)
[Address] EAT @iexplore.exe (GetWindowTheme) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C76535B)
[Address] EAT @iexplore.exe (HitTestThemeBackground) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C762DC1)
[Address] EAT @iexplore.exe (IsAppThemed) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C767009)
[Address] EAT @iexplore.exe (IsCompositionActive) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7565DF)
[Address] EAT @iexplore.exe (IsThemeActive) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C766F36)
[Address] EAT @iexplore.exe (IsThemeBackgroundPartiallyTransparent) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C75281C)
[Address] EAT @iexplore.exe (IsThemeDialogTextureEnabled) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CB3F)
[Address] EAT @iexplore.exe (IsThemePartDefined) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7530CF)
[Address] EAT @iexplore.exe (OpenThemeData) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C755F29)
[Address] EAT @iexplore.exe (OpenThemeDataEx) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7606FE)
[Address] EAT @iexplore.exe (SetThemeAppProperties) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C77CCEC)
[Address] EAT @iexplore.exe (SetWindowTheme) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C767AFC)
[Address] EAT @iexplore.exe (SetWindowThemeAttribute) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C759E39)
[Address] EAT @iexplore.exe (ThemeInitApiHook) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C754571)
[Address] EAT @iexplore.exe (UpdatePanningFeedback) : ntmarta.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x6C7775ED)

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST350041 3AS SATA Disk Device +++++
--- User ---
[MBR] ef914a62f464b077caa3aee7653f89c0
[BSP] 56143746618d53fdfae99ef749d0e61d : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 15166 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 31141888 | Size: 461733 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Generic- SD/MMC USB Device +++++
Error reading User MBR! ([0x15] The device is not ready. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) Generic- Compact Flash USB Device +++++
Error reading User MBR! ([0x15] The device is not ready. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

+++++ PhysicalDrive3: (\\.\PHYSICALDRIVE3 @ USB) Generic- SM/xD Picture USB Device +++++
Error reading User MBR! ([0x15] The device is not ready. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

+++++ PhysicalDrive4: (\\.\PHYSICALDRIVE4 @ USB) Generic- MS/MS-Pro USB Device +++++
Error reading User MBR! ([0x15] The device is not ready. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

Finished : << RKreport[0]_S_05242014_221149.txt >>

 

[Broni]

Please download ComboFix from Here, Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**

• Never rename Combofix unless instructed.
• Close any open browsers.
• Very Important! Temporarily disable your anti-virus and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
• Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
• Close any open browsers.
• WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
• Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
• If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
  If the connection is not there use restore point you created prior to running Combofix.
• Double click on combofix.exe & follow the prompts.

• 
  NOTE1. If Combofix asks you to install Recovery Console, please allow it.
  NOTE 2. If Combofix asks you to update the program, always do so.

• When finished, it will produce a report for you.
• Please post the "C:\ComboFix.txt"

**Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall
**Note 2 for AVG and CA Internet Security (Total Defense Internet Security) users: ComboFix will not run until AVG/CA Internet Security is uninstalled as a protective measure against the anti-virus. This is because AVG/CA Internet Security "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results". Since AVG/CA Internet Security cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG/CA Internet Security first.
Use AppRemover to uninstall it: https://www.techspot.com/downloads/5514-appremover.html
We can reinstall it when we're done with CF.
**Note 3: If you receive an error Illegal operation attempted on a registery key that has been marked for deletion, restart computer to fix the issue.
**Note 4: Some infections may take some significant time to be cured. As long as your computer clock is running Combofix is still working. Be patient.


Make sure, you re-enable your security programs, when you're done with Combofix.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

NOTE.
If, for some reason, Combofix refuses to run, try the following...

Delete Combofix file, download fresh one, but rename combofix.exe to your_name.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

Restart computer in safe mode

• Double-click on the Rkill desktop icon to run the tool.
• If using Vista or Windows 7 right-click on it and choose Run As Administrator.
• A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
• If not, delete the file, then download and use the one provided in Link 2.
• Do not reboot until instructed.
• If the tool does not run from any of the links provided, please let me know.

When the scan is done Notepad will open with rKill.txt log.
NOTE. rKill.txt log will also be present on your desktop.

Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.

IF you had to run rKill post BOTH logs, rKill.txt and Combofix.txt.

 

[Broni]

Still with me?

 

[Broni]

This topic is marked as abandoned and closed due to inactivity.

This member will NOT be eligible to receive any more help in malware removal forum.