Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malwarebytes Anti-Malware found PUP.Optional.MindSpark


  • This topic is locked This topic is locked
11 replies to this topic

#1 reggiereg

reggiereg

  • Members
  • 142 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:34 PM

Posted 14 March 2015 - 12:14 PM

When i was trying to connect to the internet on my windows laptop, i recieved a message that said that it could not resolve the ip address, due to a duplicate ip address on my system, or words to that effect. This worried me so I

1) rebooted into safe mode and disabled my virus protection

2) ran a Malwarebytes Anti-Malware scan which came back with PUP.Optional.MindSpark, and let it clean it

3) ran a trend micro houscall, which came back with EXPLCVE20130431, and heur swfmstr.a, which I let it clean.

4) I then ran FRST64.exe which gave 2 logfiles, see below.

 

NOTE, eclipse has stopped working on my machine, due to java runtime environment being not there anymore. I think Trend micro's clean must have broken my.

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by dom (administrator) on DOM-VAIO on 14-03-2015 16:43:21
Running from C:\Users\dom\Desktop
Loaded Profiles: dom (Available profiles: dom & hooky sw)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 9 (Default browser not detected!)
Boot Mode: Safe Mode (with Networking)
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Trend Micro Inc.) C:\Users\dom\AppData\Local\Temp\HouseCall\housecall.bin
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775584 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [212480 2010-05-31] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [673136 2010-05-31] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [600928 2010-06-01] (Sony Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [673616 2009-04-07] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Seagate Dashboard] => C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe [79112 2011-06-01] ()
HKLM-x32\...\Run: [SHTtray.exe] => C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe [99696 2010-06-20] (Sony Corporation)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5235128 2012-06-14] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2109952 2014-10-07] (Dominik Reichl)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-03-13] (Avast Software s.r.o.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM-x32\...\Run: [WordWeb] => C:\Program Files (x86)\WordWeb\wweb32.exe [80000 2014-07-05] (WordWeb Software)
HKU\S-1-5-21-1744455475-465955899-1649940808-1001\...\Run: [Google Update] => C:\Users\dom\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-09-01] (Google Inc.)
HKU\S-1-5-21-1744455475-465955899-1649940808-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-1744455475-465955899-1649940808-1001\...\Run: [DevidAgent] => C:\Users\dom\Downloads\Dev_Agent_Setup.exe /autorun
HKU\S-1-5-21-1744455475-465955899-1649940808-1001\...\Run: [FileHippo.com] => C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe [2926800 2015-01-27] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\OKI LPR Utility.lnk
ShortcutTarget: OKI LPR Utility.lnk -> C:\Program Files\Okidata\OKI LPR Utility\okilpr.exe ()
Startup: C:\Users\dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\dom\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\hooky sw\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\dom\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (Avast Software s.r.o.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dom\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exelsdelete
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1744455475-465955899-1649940808-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1744455475-465955899-1649940808-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
SearchScopes: HKU\S-1-5-21-1744455475-465955899-1649940808-1001 -> {ACBF42DF-567A-4B6E-9F70-517E58812188} URL = http://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKU\S-1-5-21-1744455475-465955899-1649940808-1001 -> {D241C8EE-FECA-4BEC-95D1-A845A25EA19F} URL = http://uk.shopping.com/?linkin_id=8056359
SearchScopes: HKU\S-1-5-21-1744455475-465955899-1649940808-1001 -> {E24040F5-EC92-49C9-8B3C-A575FCFFA108} URL = http://rover.ebay.com/rover/1/710-42480-16445-15/4?satitle={searchTerms}
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-23] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-03-06] (Avast Software s.r.o.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-23] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-06] (Avast Software s.r.o.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-04-01] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-04-01] (Microsoft Corporation.)
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\dom\AppData\Roaming\Mozilla\Firefox\Profiles\kt8bcz6o.default
FF NewTab: hxxp://www.google.com/firefox
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-05] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-23] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-05] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1216156.dll [2015-01-09] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-13] (Google, Inc.)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\Sony\MSS\3.8.130\npMcAfeeMss.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-04-10] (VideoLAN)
FF Plugin HKU\S-1-5-21-1744455475-465955899-1649940808-1001: @tools.google.com/Google Update;version=3 -> C:\Users\dom\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-1744455475-465955899-1649940808-1001: @tools.google.com/Google Update;version=9 -> C:\Users\dom\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Extension: British English Dictionary - C:\Users\dom\AppData\Roaming\Mozilla\Firefox\Profiles\kt8bcz6o.default\Extensions\en-GB@dictionaries.addons.mozilla.org [2012-03-28]
FF Extension: Google Shortcuts - C:\Users\dom\AppData\Roaming\Mozilla\Firefox\Profiles\kt8bcz6o.default\Extensions\{5C46D283-ABDE-4dce-B83C-08881401921C}.xpi [2012-04-02]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2015-02-02]
FF HKLM-x32\...\Firefox\Extensions: [wcapturex@deskperience.com] - C:\Program Files (x86)\WordWeb\WCaptureMoz
FF Extension: WordWeb one-click lookup - C:\Program Files (x86)\WordWeb\WCaptureMoz [2015-01-23]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-11-13]
 
Chrome: 
=======
CHR HomePage: Default -> 
CHR Profile: C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Cast) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2014-07-06]
CHR Extension: (Avast Online Security) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-28]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13]
CHR Extension: (Google Wallet) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-07]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-06]
CHR HKLM-x32\...\Chrome\Extension: [mjdepfkicdcciagbigfcmdhknnoaaegf] - C:\Program Files (x86)\WordWeb\wcxChrome.crx [2012-04-04]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-03-06] (Avast Software s.r.o.)
S2 CCALib8; C:\Program Files (x86)\Canon\CAL\CALMAIN.exe [96341 2005-09-30] (Canon Inc.) [File not signed]
S2 DCSLoader; C:\Windows\system32\spool\DRIVERS\x64\3\OKHSLDCS.EXE [20480 2011-11-14] (Oki Data Corporation) [File not signed]
S2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
S2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-01] (Intel Corporation)
S2 hasplms; C:\Windows\system32\hasplms.exe [4412872 2012-08-23] (SafeNet Inc.)
S3 McComponentHostServiceSony; C:\Program Files (x86)\Sony\MSS\3.8.130\McCHSvc.exe [235216 2013-10-16] (McAfee, Inc.)
S2 OpLclSrv; C:\Program Files\Okidata\Common\Extend3\portmgrsrv.exe [169472 2011-04-11] (Oki Data Corporation) [File not signed]
S2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [1919256 2015-02-12] (IBM Corp.)
S2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-11-01] (Intel Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-01] (Intel Corporation)
S2 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [887000 2011-01-20] (Sony Corporation)
S2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [836608 2010-06-08] (Sony Corporation) [File not signed]
S3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
S2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1151424 2012-06-14] (Western Digital )
S2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [248248 2012-09-06] (Western Digital)
S2 WDRulesService; C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe [1177536 2012-06-14] (Western Digital )
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
S2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-03-06] ()
S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-03-06] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-03-06] (Avast Software s.r.o.)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-03-06] ()
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-03-06] (Avast Software s.r.o.)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [441728 2015-03-06] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [136752 2015-03-06] (Avast Software s.r.o.)
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [268640 2015-03-06] ()
S2 hardlock; C:\Windows\system32\drivers\hardlock.sys [323584 2012-10-06] (SafeNet Inc.)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [10326784 2010-06-24] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [271872 2010-06-24] (Intel® Corporation) [File not signed]
S3 JLTECH0227; C:\Windows\System32\Drivers\jl2005c.sys [77992 2010-05-29] (Windows ® Codename Longhorn DDK provider) [File not signed]
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69376 2011-10-28] (Lavasoft AB)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2013-07-01] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2013-07-01] ()
S1 RapportCerberus_80128; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_80128.sys [844440 2015-02-21] (IBM Corp.)
S1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [445816 2015-02-12] (IBM Corp.)
S0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [535576 2015-02-12] (IBM Corp.)
S1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [558872 2015-02-12] (IBM Corp.)
S3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2015-01-23] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
S1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [192344 2015-02-13] (IDRIX)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-03-14 16:43 - 2015-03-14 16:44 - 00022209 _____ () C:\Users\dom\Desktop\FRST.txt
2015-03-14 16:35 - 2015-03-14 16:35 - 00000000 ____D () C:\Users\dom\Documents\MATLAB
2015-03-14 16:35 - 2015-03-14 16:35 - 00000000 ____D () C:\Users\dom\AppData\Roaming\MathWorks
2015-03-14 12:58 - 2015-03-14 16:30 - 00000000 ____D () C:\Users\dom\Desktop\torrin
2015-03-14 11:06 - 2015-03-14 11:29 - 00000317 _____ () C:\Users\dom\Desktop\deque.py
2015-03-14 07:17 - 2015-03-14 07:17 - 02095616 _____ (Farbar) C:\Users\dom\Desktop\FRST64.exe
2015-03-13 19:56 - 2015-03-13 19:56 - 02494560 _____ (Trend Micro Inc.) C:\Users\dom\Downloads\HousecallLauncher64.exe
2015-03-13 19:47 - 2015-03-13 19:47 - 00000056 _____ () C:\Windows\setupact.log
2015-03-13 19:47 - 2015-03-13 19:47 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-11 11:53 - 2015-02-21 19:17 - 17882624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-11 11:53 - 2015-02-21 19:07 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-03-11 11:53 - 2015-02-21 19:02 - 10931200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-11 11:53 - 2015-02-21 19:00 - 02339840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-11 11:53 - 2015-02-21 18:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-11 11:53 - 2015-02-21 18:54 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-11 11:53 - 2015-02-21 18:53 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-11 11:53 - 2015-02-21 18:52 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-03-11 11:53 - 2015-02-21 18:52 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-11 11:53 - 2015-02-21 18:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-11 11:53 - 2015-02-21 18:51 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-11 11:53 - 2015-02-21 18:51 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-03-11 11:53 - 2015-02-21 18:51 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-11 11:53 - 2015-02-21 18:51 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-11 11:53 - 2015-02-21 18:51 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-11 11:53 - 2015-02-21 18:51 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-11 11:53 - 2015-02-21 18:51 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-03-11 11:53 - 2015-02-21 18:51 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-03-11 11:53 - 2015-02-21 18:50 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-11 11:53 - 2015-02-21 18:50 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-11 11:53 - 2015-02-21 18:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-11 11:53 - 2015-02-21 18:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-03-11 11:53 - 2015-02-21 17:37 - 12375040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-11 11:53 - 2015-02-21 17:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-03-11 11:53 - 2015-02-21 17:29 - 09747968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-11 11:53 - 2015-02-21 17:28 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-11 11:53 - 2015-02-21 17:22 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-11 11:53 - 2015-02-21 17:21 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-11 11:53 - 2015-02-21 17:21 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-11 11:53 - 2015-02-21 17:20 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-03-11 11:53 - 2015-02-21 17:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-11 11:53 - 2015-02-21 17:19 - 01803264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-11 11:53 - 2015-02-21 17:19 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-03-11 11:53 - 2015-02-21 17:19 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-11 11:53 - 2015-02-21 17:19 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-11 11:53 - 2015-02-21 17:19 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-11 11:53 - 2015-02-21 17:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-11 11:53 - 2015-02-21 17:18 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-11 11:53 - 2015-02-21 17:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-11 11:53 - 2015-02-21 17:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-11 11:53 - 2015-02-21 17:18 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-03-11 11:53 - 2015-02-21 17:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-03-11 11:53 - 2015-02-21 17:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-03-11 11:53 - 2015-02-21 17:17 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-11 11:53 - 2015-02-20 03:29 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-11 11:52 - 2015-02-20 04:41 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-11 11:52 - 2015-02-20 04:40 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-11 11:52 - 2015-02-20 04:40 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-11 11:52 - 2015-02-20 04:40 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-11 11:52 - 2015-02-20 04:13 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-11 11:52 - 2015-02-20 04:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-11 11:52 - 2015-02-20 04:13 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-11 11:52 - 2015-02-20 04:12 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-11 11:52 - 2015-02-20 03:09 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-11 11:52 - 2015-02-03 03:34 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-11 11:52 - 2015-02-03 03:34 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-11 11:52 - 2015-02-03 03:34 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-11 11:52 - 2015-02-03 03:33 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-11 11:52 - 2015-02-03 03:31 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-11 11:52 - 2015-02-03 03:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-11 11:52 - 2015-02-03 03:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-11 11:52 - 2015-02-03 03:30 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-11 11:52 - 2015-02-03 03:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 11:52 - 2015-02-03 03:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-11 11:52 - 2015-02-03 03:30 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-11 11:52 - 2015-02-03 03:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-11 11:52 - 2015-02-03 03:30 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-11 11:52 - 2015-02-03 03:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-11 11:52 - 2015-02-03 03:30 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 11:52 - 2015-02-03 03:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-11 11:52 - 2015-02-03 03:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-11 11:52 - 2015-02-03 03:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-11 11:52 - 2015-02-03 03:28 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-11 11:52 - 2015-02-03 03:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-11 11:52 - 2015-02-03 03:16 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-11 11:52 - 2015-02-03 03:16 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-11 11:52 - 2015-02-03 03:12 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-11 11:52 - 2015-02-03 03:12 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-11 11:52 - 2015-02-03 03:12 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-11 11:52 - 2015-02-03 03:11 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-11 11:52 - 2015-02-03 03:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-11 11:52 - 2015-02-03 03:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-11 11:52 - 2015-02-03 03:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-11 11:52 - 2015-02-03 02:32 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-11 11:52 - 2014-10-31 22:24 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-11 11:51 - 2015-02-03 03:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-11 11:51 - 2015-02-03 03:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-11 11:49 - 2015-01-31 03:48 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-03-11 11:49 - 2015-01-31 03:48 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-11 11:49 - 2015-01-30 23:56 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-03-11 11:48 - 2015-03-06 05:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-11 11:48 - 2015-03-06 05:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-11 11:48 - 2015-03-06 05:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-11 11:48 - 2015-03-06 05:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-11 11:48 - 2015-03-06 05:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-11 11:48 - 2015-03-06 05:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-11 11:48 - 2015-03-06 05:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-11 11:48 - 2015-03-06 05:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-11 11:48 - 2015-03-06 05:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-11 11:48 - 2015-03-06 05:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-11 11:48 - 2015-03-06 05:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-11 11:48 - 2015-03-06 05:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-11 11:48 - 2015-03-06 05:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-11 11:48 - 2015-03-06 05:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-11 11:48 - 2015-03-06 05:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-11 11:48 - 2015-03-06 05:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-11 11:48 - 2015-03-06 05:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-11 11:48 - 2015-03-06 05:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-11 11:48 - 2015-03-06 05:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-11 11:48 - 2015-03-06 05:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-11 11:48 - 2015-03-06 05:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-11 11:48 - 2015-03-06 05:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-11 11:48 - 2015-02-13 05:26 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-11 11:48 - 2015-02-13 05:22 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-11 11:48 - 2015-02-03 03:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-11 11:48 - 2015-02-03 03:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-11 11:48 - 2015-01-30 23:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-11 11:47 - 2015-02-26 03:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-11 11:47 - 2015-02-03 03:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-11 11:47 - 2015-02-03 03:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-11 11:47 - 2015-01-17 02:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-11 11:47 - 2015-01-17 02:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-11 11:43 - 2015-02-04 03:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-11 11:43 - 2015-02-04 02:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-11 11:33 - 2015-03-11 11:33 - 00002724 _____ () C:\Users\dom\AppData\Local\recently-used.xbel
2015-03-08 20:41 - 2015-03-13 13:32 - 00000000 ____D () C:\Users\dom\Desktop\from_area_detect_script
2015-03-06 05:22 - 2015-03-06 10:54 - 00038151 _____ () C:\Users\dom\Desktop\fabbiaEntries.ods
2015-03-06 05:10 - 2015-03-06 05:10 - 00000000 ____D () C:\Users\dom\Desktop\heaton
2015-03-06 04:18 - 2015-03-06 04:18 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-03-06 04:18 - 2015-03-06 04:18 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-03-03 22:57 - 2015-03-05 14:00 - 00001618 _____ () C:\Users\dom\Desktop\videocap_opencv2_1.py
2015-03-03 20:36 - 2015-01-09 03:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-03-03 20:36 - 2015-01-09 03:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-03-03 20:36 - 2015-01-09 03:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-03-03 20:36 - 2015-01-09 02:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-25 11:59 - 2015-01-08 23:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-25 11:59 - 2015-01-08 23:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-23 20:48 - 2015-02-23 20:48 - 00001500 _____ () C:\Users\Public\Desktop\LibreOffice 4.4.lnk
2015-02-23 20:48 - 2015-02-23 20:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.4
2015-02-13 07:30 - 2015-02-13 07:38 - 00000000 ____D () C:\Users\dom\AppData\Roaming\VeraCrypt
2015-02-13 07:30 - 2015-02-13 07:30 - 00000807 _____ () C:\Users\Public\Desktop\VeraCrypt.lnk
2015-02-13 07:30 - 2015-02-13 07:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VeraCrypt
2015-02-13 07:29 - 2015-02-13 07:29 - 00192344 _____ (IDRIX) C:\Windows\system32\Drivers\veracrypt.sys
2015-02-13 07:29 - 2015-02-13 07:29 - 00000000 ____D () C:\Program Files\VeraCrypt
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-03-14 16:43 - 2014-11-22 22:32 - 00000000 ____D () C:\FRST
2015-03-14 16:13 - 2012-05-01 17:01 - 11216277 _____ () C:\Users\dom\AppData\Local\census.cache
2015-03-14 15:56 - 2012-05-01 16:55 - 00000000 _____ () C:\Users\dom\AppData\Local\ars.cache
2015-03-14 13:01 - 2009-07-14 05:13 - 00786928 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-14 11:39 - 2014-05-01 08:56 - 00000000 ____D () C:\Users\dom\AppData\Roaming\Wing 101 5
2015-03-14 11:39 - 2014-05-01 08:56 - 00000000 ____D () C:\Users\dom\AppData\Local\Wing 101 5
2015-03-14 10:19 - 2015-01-09 13:06 - 00000000 ____D () C:\Users\dom\AppData\Local\Eclipse
2015-03-14 10:13 - 2015-01-09 12:57 - 00000000 ____D () C:\Program Files (x86)\eclipse_luna
2015-03-13 19:49 - 2013-03-02 08:50 - 00236602 _____ () C:\aaw7boot.log
2015-03-13 19:47 - 2009-07-14 05:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-13 19:46 - 2014-01-28 10:29 - 01227183 _____ () C:\Windows\WindowsUpdate.log
2015-03-13 19:15 - 2014-09-01 19:31 - 00000900 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1744455475-465955899-1649940808-1001UA.job
2015-03-13 19:05 - 2012-03-06 12:12 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-13 18:59 - 2012-05-04 12:51 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-13 18:15 - 2014-09-01 19:31 - 00000848 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1744455475-465955899-1649940808-1001Core.job
2015-03-13 18:09 - 2013-10-06 19:53 - 00000600 _____ () C:\Users\dom\AppData\Roaming\winscp.rnd
2015-03-13 18:03 - 2014-07-13 07:34 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-13 18:03 - 2012-03-10 15:47 - 00000000 ____D () C:\ProgramData\TEMP
2015-03-13 18:02 - 2012-03-10 15:46 - 00000000 ____D () C:\Program Files (x86)\SpywareBlaster
2015-03-13 17:49 - 2012-07-04 12:05 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-03-13 16:48 - 2009-07-14 04:45 - 00022976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-13 16:48 - 2009-07-14 04:45 - 00022976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-13 15:51 - 2012-03-14 14:35 - 00000000 ___RD () C:\Users\dom\Dropbox
2015-03-13 15:50 - 2012-03-14 14:33 - 00000000 ____D () C:\Users\dom\AppData\Roaming\Dropbox
2015-03-13 15:48 - 2012-03-06 12:11 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-13 12:38 - 2013-06-26 18:43 - 00000132 _____ () C:\Users\dom\AppData\Roaming\Adobe PNG Format CS6 Prefs
2015-03-13 06:10 - 2012-03-10 15:27 - 00000000 ____D () C:\Users\dom\AppData\Local\Adobe
2015-03-12 10:21 - 2013-03-26 11:28 - 00000000 ____D () C:\Users\dom\AppData\Roaming\KeePass
2015-03-11 16:24 - 2009-07-14 05:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-03-11 16:09 - 2009-07-14 04:45 - 04990984 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-11 16:04 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-11 16:04 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-11 15:12 - 2013-07-30 06:05 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 14:57 - 2012-03-09 21:31 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-11 11:35 - 2014-02-22 14:18 - 00000000 ____D () C:\Users\dom\.gimp-2.8
2015-03-11 11:33 - 2014-02-22 14:22 - 00000000 ____D () C:\Users\dom\AppData\Local\gtk-2.0
2015-03-10 13:41 - 2013-10-06 08:22 - 00000600 _____ () C:\Users\dom\AppData\Local\PUTTY.RND
2015-03-10 11:16 - 2012-03-14 14:34 - 00000000 ____D () C:\Users\dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-03-06 04:18 - 2014-11-13 10:53 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-03-06 04:18 - 2014-11-13 10:53 - 00441728 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-03-06 04:18 - 2014-11-13 10:53 - 00268640 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-03-06 04:18 - 2014-11-13 10:53 - 00136752 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-03-06 04:18 - 2014-11-13 10:53 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-03-06 04:18 - 2014-11-13 10:53 - 00088408 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-03-06 04:18 - 2014-11-13 10:53 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-03-06 04:18 - 2014-11-13 10:53 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-03-04 14:27 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\tracing
2015-03-02 20:40 - 2014-05-23 16:39 - 00050091 _____ () C:\Users\dom\Desktop\torrin.php
2015-02-28 10:25 - 2014-02-22 14:15 - 00000854 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2015-02-28 07:17 - 2015-01-23 19:33 - 00002048 _____ () C:\Users\dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileHippo App Manager.lnk
2015-02-28 07:15 - 2014-02-12 09:57 - 00001041 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2015-02-28 07:15 - 2013-10-06 19:50 - 00000000 ____D () C:\Program Files (x86)\WinSCP
2015-02-27 18:28 - 2012-05-09 08:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-02-27 07:13 - 2012-03-10 16:04 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-27 07:10 - 2013-08-25 10:16 - 00000000 ____D () C:\Users\dom\AppData\Roaming\Notepad++
2015-02-27 07:08 - 2015-02-02 12:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-02-27 07:08 - 2012-03-10 16:17 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-02-26 18:07 - 2014-01-23 10:26 - 00000000 ____D () C:\Users\dom\Desktop\pi
2015-02-25 13:11 - 2014-10-07 10:05 - 00001101 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2015-02-25 09:49 - 2012-03-13 14:23 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-02-25 09:28 - 2012-03-09 20:33 - 00086384 _____ () C:\Users\dom\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-24 04:17 - 2012-03-10 08:50 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-02-23 20:48 - 2014-10-15 10:27 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2015-02-21 11:08 - 2012-03-09 20:32 - 00000000 ____D () C:\Users\dom
2015-02-21 07:18 - 2014-04-22 09:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Endpoint Protection
2015-02-15 14:29 - 2009-07-14 05:08 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-02-14 16:46 - 2012-03-13 11:14 - 00000000 ____D () C:\Users\dom\Documents\Map Overlays
2015-02-13 17:26 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\rescache
2015-02-12 10:00 - 2014-04-22 09:31 - 00535576 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportKE64.sys
 
==================== Files in the root of some directories =======
 
2013-06-26 19:13 - 2013-06-26 19:13 - 0000132 _____ () C:\Users\dom\AppData\Roaming\Adobe GIF Format CS6 Prefs
2013-06-26 18:43 - 2015-03-13 12:38 - 0000132 _____ () C:\Users\dom\AppData\Roaming\Adobe PNG Format CS6 Prefs
2013-06-30 06:05 - 2014-10-02 14:44 - 0000096 _____ () C:\Users\dom\AppData\Roaming\Camdata.ini
2013-06-30 06:05 - 2014-10-02 14:44 - 0000408 _____ () C:\Users\dom\AppData\Roaming\CamLayout.ini
2013-06-30 06:05 - 2014-10-02 14:44 - 0000408 _____ () C:\Users\dom\AppData\Roaming\CamShapes.ini
2013-06-30 06:03 - 2014-10-02 14:44 - 0004534 _____ () C:\Users\dom\AppData\Roaming\CamStudio.cfg
2013-06-30 07:13 - 2013-06-30 07:13 - 0000098 _____ () C:\Users\dom\AppData\Roaming\CamStudio.Producer.command
2013-06-30 07:14 - 2013-06-30 07:14 - 0000000 _____ () C:\Users\dom\AppData\Roaming\CamStudio.Producer.Data.ini
2013-06-30 07:14 - 2013-06-30 07:14 - 0001206 _____ () C:\Users\dom\AppData\Roaming\CamStudio.Producer.ini
2013-10-02 06:23 - 2013-10-06 10:08 - 0003895 _____ () C:\Users\dom\AppData\Roaming\LTspiceIV.ini
2014-06-27 14:44 - 2014-06-27 14:44 - 0000046 _____ () C:\Users\dom\AppData\Roaming\mbam.context.scan
2013-01-22 11:02 - 2014-11-27 13:01 - 0006680 _____ () C:\Users\dom\AppData\Roaming\PrimoPDFSet.xml
2014-06-26 11:55 - 2014-10-02 14:44 - 0000096 _____ () C:\Users\dom\AppData\Roaming\version2.xml
2013-10-06 19:53 - 2015-03-13 18:09 - 0000600 _____ () C:\Users\dom\AppData\Roaming\winscp.rnd
2012-05-01 16:55 - 2015-03-14 15:56 - 0000000 _____ () C:\Users\dom\AppData\Local\ars.cache
2012-05-01 17:01 - 2015-03-14 16:13 - 11216277 _____ () C:\Users\dom\AppData\Local\census.cache
2012-03-10 20:46 - 2014-12-27 07:44 - 0225280 _____ () C:\Users\dom\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-04-30 21:25 - 2012-04-30 21:25 - 0000036 _____ () C:\Users\dom\AppData\Local\housecall.guid.cache
2013-10-06 08:22 - 2015-03-10 13:41 - 0000600 _____ () C:\Users\dom\AppData\Local\PUTTY.RND
2015-03-11 11:33 - 2015-03-11 11:33 - 0002724 _____ () C:\Users\dom\AppData\Local\recently-used.xbel
2012-08-25 14:54 - 2012-08-25 14:54 - 0000017 _____ () C:\Users\dom\AppData\Local\resmon.resmoncfg
2014-10-16 11:48 - 2014-10-16 11:48 - 0000010 _____ () C:\Users\dom\AppData\Local\sponge.last.runtime.cache
 
Some content of TEMP:
====================
C:\Users\dom\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpduquzf.dll
C:\Users\dom\AppData\Local\Temp\winp.x643286603236552557303.dll
C:\Users\dom\AppData\Local\Temp\winp.x643468336870237779907.dll
C:\Users\dom\AppData\Local\Temp\winp.x645993274845538612934.dll
C:\Users\hooky sw\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp8zg90_.dll
C:\Users\hooky sw\AppData\Local\Temp\Quarantine.exe
C:\Users\hooky sw\AppData\Local\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-03-06 09:11
 
==================== End Of Log ============================
 
 
 
 
 
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 13/03/2015
Scan Time: 18:04:25
Logfile: malaware log.txt
Administrator: Yes
 
Version: 2.00.4.1028
Malware Database: v2015.03.13.06
Rootkit Database: v2015.02.25.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: dom
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 462412
Time Elapsed: 1 hr, 16 min, 55 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 85
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\adapter, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\abstractbutton, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\abstractbutton\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\alert, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\alert\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedhtml, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedhtml\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedhtml\html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedhtml\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedscript, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedscript\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedscript\html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedscript\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\flare, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\flare\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\flare\icons, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\generic, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\generic\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\link, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\link\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\images, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\rss, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\rss\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\thirdparty, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\thirdparty\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\uninstall, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\uninstall\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\weather, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\weather\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\common, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\radio, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\radio\css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\radio\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\rss, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\rss\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\test, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\topapps, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\topapps\css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\topapps\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\weather, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\weather\css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\weather\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api\window, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\moviereviews, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\moviereviews\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\moviereviews\css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\moviereviews\html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\moviereviews\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio\css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio\foreground, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio\radioWrapper, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\search, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\search\background, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\search\html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\icons, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\native, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\native\libs, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\shared, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\_metadata, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
 
Files: 219
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\bg.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\buildVars, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\buildVars.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\companionSW.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\config.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\contentScript.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\contentScript.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\debug.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\debug.jade, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\extension_toolbar_api.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\initWidgetWindow.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\manifest.json, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\newTabContentScript.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\options.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\spent.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\spent.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\spent.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\spent2.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\spent2.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\spentJ.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\spentK.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\spentK.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\startup.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\stub.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\stubby.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\superFrame.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\toolbar.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\toolbar.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\toolbarUI.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\toolbarUI.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\toolbarUI.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\url.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\adapter\adapterUtil.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\adapter\widget-adapter.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\abstractbutton\background\abstractButton.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\alert\background\alertButton.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedhtml\background\embedHtmlWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedhtml\html\embedHtmlTemplate.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedhtml\html\innerEmbedHtmlTemplate.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedhtml\js\embedHtmlUI.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedscript\background\embedScriptWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedscript\html\embedScriptTemplate.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedscript\html\innerEmbedScriptTemplate.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\embedscript\js\embedScriptUI.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\flare\background\FlareWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\flare\icons\Icon_Flare_blue.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\flare\icons\Icon_Flare_pink.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\flare\icons\Thumbs.db, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\generic\background\GenericWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\link\background\linkButton.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\README.txt, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\background\menuButton.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\css\menuframe.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\html\menuframe.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\images\right_arrow.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\images\right_arrow_white.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\js\jquery-1.7.1.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\js\menuframe.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\js\query-string.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\menu\js\underscore-1.3.1.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\rss\background\RssWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\thirdparty\background\thirdPartyWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\uninstall\background\uninstallButton.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\components\weather\background\weatherButton.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\bs.30.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\common.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\dynamic.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\enableDetect.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\eventListening.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\global.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\jquery-1.7.1.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\list-interaction.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\messageEventListener.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\navRedirector.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\paramReplacer.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\PartnerId.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\set.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\underscore-1.3.1.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\underscore-1.5.2.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\js\unifiedLogging.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widget-context-1.0.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\common\common.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\common\eventListening.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\common\jquery-1.7.1.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\common\list-interaction.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\common\set.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\common\underscore-1.3.1.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\radio\radio-widget.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\radio\css\radio-widget.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\radio\js\radio-custom.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\radio\js\radio-parser.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\radio\js\radio-widget-ui.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\radio\js\radio-widget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\rss\rssWidget.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\rss\js\rss-widget-custom.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\rss\js\rss-widget-parse.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\rss\js\rss-widget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\test\invalid.json, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\test\jquery.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\test\qunit.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\test\qunit.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\test\resource.json, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\test\resource.xml, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\test\testWidget.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\test\testWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\topapps\widget.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\topapps\css\widget.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\topapps\js\nanigans-topapps-feed.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\topapps\js\topapps-config.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\topapps\js\widget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\weather\weatherButton.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\weather\css\weatherButton.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\common\widget-api\widgets\weather\js\weather.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api\background\ApiBasedWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api\background\widget-api-impl.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api\window\hiddenWidgetWindow.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api\window\hiddenWidgetWindow.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api\window\hiddenWidgetWindowInit.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api\window\widgetWindow.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\api\window\widgetWindow.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\background\updateSearch.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\background\updateSearchPromptBg.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\07_buttons2.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\08_buttons2.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\defaultSearchModal.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\defaultSearchModalInjector.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\defaultSearchModalInjector.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\tvf_btn_ok.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\tvf_btn_ok2.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\tvf_restart_alert_icon.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\tvf_restart_icon.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\defaultSearch\foreground\updateSearchPromptFg.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\moviereviews\background\MovieReviewsWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\moviereviews\css\movieReviews.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\moviereviews\html\movieReviews.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\moviereviews\js\movieReviews.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio\background\RadioWidget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio\css\toolbar-item.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio\foreground\button.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio\radioWrapper\radioWrapper.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\radio\radioWrapper\radioWrapper.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\search\background\searchBox.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\search\html\searchSuggestions.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\search\html\searchSuggestions.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\search\html\searchSuggestions.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\search\html\searchSuggestionsInit.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\css\supertab.css, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\html\supertab.html, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\js\newtabfork.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\js\reporting.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\js\srchsugg.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\js\supertab.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\js\unifiedLogging.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\components\supertab\js\__utm.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\icons\arrowSprite.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\icons\icon128.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\icons\icon16.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\icons\icon19disabled.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\icons\icon19on.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\icons\icon48.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\icons\tb_icon_search_disappearing_ask.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\222064100.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\222064106.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\222064107.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\222064108.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\222064109.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\222064110.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\222064111.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\222064140.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\222064157.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\down_arrow.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\IDR_PRODUCT_LOGO_16.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\IDR_WEBSTORE_ICON.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\magnifying_glass.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\RadioPlayerSprite.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\search_button.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\tvf_icon_guide.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\tvf_logo.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\images\wrench.png, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\chromeUtils.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\exeManager.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\exeManagerNMD.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\exePackageManager.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\focusManager.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\globalBlacklistManager.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\messaging.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\mutation_summary-min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\mutation_summary.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\nativeMessagingDispatcher.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\newTabInfo.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\newTabInitialize.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\options.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\readLocalStorage.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\reservespacefortoolbar.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\reservespaceifenabled.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\scriptInjector.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\searchContext.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\settingsOverrides.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\toolbarCookieParser.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\toolbarPreinit.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\underscore-1.3.1.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\URILoaderContentScript.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\Widget.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\widgetContentScriptInjectee.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\widgetFactory.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\js\widgetWindowManager.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\native\cache.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\native\ce.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\native\debug.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\native\ss.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\native\libs\jquery-1.7.1.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\native\libs\jquery-1.9.1.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\native\libs\underscore-1.5.2.min.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\shared\HttpURL.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\shared\rsvp-latest.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\shared\unifiedLogging.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\shared\universalConsole.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\shared\utils.js, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
PUP.Optional.MindSpark.A, C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjcmnpnoopgilmnfhloocdcbnimmmea\12.10.6.15045_0\_metadata\verified_contents.json, , [5dad9ca9ddad1125ec7dbce451b2a45c], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)

Edited by reggiereg, 14 March 2015 - 03:38 PM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 38,764 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:34 PM

Posted 18 March 2015 - 09:12 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
 
start

CloseProcesses:

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\Sony\MSS\3.8.130\npMcAfeeMss.dll No File
CHR Extension: (Avast Online Security) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-06]
C:\Users\dom\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpduquzf.dll
C:\Users\dom\AppData\Local\Temp\winp.x643286603236552557303.dll
C:\Users\dom\AppData\Local\Temp\winp.x643468336870237779907.dll
C:\Users\dom\AppData\Local\Temp\winp.x645993274845538612934.dll
C:\Users\hooky sw\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp8zg90_.dll

End
Save the files as fixlist.txt into the same folder as FRST

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

How is the computer running now?

#3 reggiereg

reggiereg
  • Topic Starter

  • Members
  • 142 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:34 PM

Posted 18 March 2015 - 03:15 PM

 
Hi  Nasdaq,
 
I did as you requested, and the computers fan is going at fill speed and hasn't stopped. The computer seems slower.
 
 
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by dom at 2015-03-18 19:59:24 Run:3
Running from C:\Users\dom\Desktop\bleping_computer
Loaded Profiles: dom (Available profiles: dom & hooky sw)
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
start
 
CloseProcesses:
 
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\Sony\MSS\3.8.130\npMcAfeeMss.dll No File
CHR Extension: (Avast Online Security) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-06]
C:\Users\dom\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpduquzf.dll
C:\Users\dom\AppData\Local\Temp\winp.x643286603236552557303.dll
C:\Users\dom\AppData\Local\Temp\winp.x643468336870237779907.dll
C:\Users\dom\AppData\Local\Temp\winp.x645993274845538612934.dll
C:\Users\hooky sw\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp8zg90_.dll
 
End
*****************
 
Processes closed successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin" => Key deleted successfully.
C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki => Moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => Key deleted successfully.
Could not move "C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx" => Scheduled to move on reboot.
"C:\Users\dom\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpduquzf.dll" => File/Directory not found.
"C:\Users\dom\AppData\Local\Temp\winp.x643286603236552557303.dll" => File/Directory not found.
"C:\Users\dom\AppData\Local\Temp\winp.x643468336870237779907.dll" => File/Directory not found.
"C:\Users\dom\AppData\Local\Temp\winp.x645993274845538612934.dll" => File/Directory not found.
C:\Users\hooky sw\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp8zg90_.dll => Moved successfully.
 
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-03-18 20:02:29)<=
 
"C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx" => File could not move.
 
==== End of Fixlog 20:02:29 ====


#4 nasdaq

nasdaq

  • Malware Response Team
  • 38,764 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:34 PM

Posted 19 March 2015 - 07:08 AM


Reset the browsers that have been compromised.

Reset Chrome...
Open Google Chrome, click on menu icon google-chrome-setting-icon.png which is located right side top of the google chrome.
 
Click "Settings" then "Show advanced settings" at the bottom of the screen.
 
Click "Reset browser settings" button.
 
Restart Chrome.
====

Firefox:
Reset Default Browsing settings:
https://support.mozilla.org/en-US/kb/reset-firefox-easily-fix-problems?utm_expid=65912487-41.djHNRQY0RhaLvvtvcd0BQA.2&utm_referrer=https%3A%2F%2Fwww.google.ca%2F
===

Reset Internet Explorer:
Menu > Tools > Internet Options > Advanced Tab.
Click the Reset button on the bottom of the pane.
Click the Apply button.
Close IE.

===

If the problem persists, boot in safe mode and let me know is it's the same.

#5 reggiereg

reggiereg
  • Topic Starter

  • Members
  • 142 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:34 PM

Posted 19 March 2015 - 12:02 PM

I rebooted into safe mode and the fan eases off following a reboot. I didn't do the resetting of the browsers in safe mode however. Do I need to do this in safe mode?



#6 nasdaq

nasdaq

  • Malware Response Team
  • 38,764 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:34 PM

Posted 19 March 2015 - 01:16 PM

Boot normally and refresh the browsers.

How is the fan running now?

#7 reggiereg

reggiereg
  • Topic Starter

  • Members
  • 142 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:34 PM

Posted 19 March 2015 - 02:07 PM

it seems much better, now, am I clear?



#8 nasdaq

nasdaq

  • Malware Response Team
  • 38,764 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:34 PM

Posted 20 March 2015 - 08:17 AM

There could be some remnant items.
Run this online scan.
It may take some time. Do it when you know you will not need the computer for a few hours.

Please downloadesetlogo.pngOnline Scanner and save it to your Desktop.
  • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
  • Start installer.pngwith administartor privileges.
  • Select the option Yes, I accept the Terms of Use and click on Start.
  • Choose the following settings:
settings.png
  • Click on Start. The virus signature database will begin to download. This may take some time.
  • When completed the Online Scan will begin automatically.
    Note: This scan might take a long time! Please be patient.
  • When completed select Uninstall application on close if you so wish, but make sure you copy the logfile first!
  • Now click on Finish
  • A log filelog.pngis created at logpath.png
    Copy and paste the content of this log file in your next reply.
Note: Do not forget to re-enable your antivirus application after running the above scan!
eset.gif

lesestoff.png

p.s. Delete everything that will be found.

===

If all is well.

To learn more about how to protect yourself while on the internet read this little guide best security practices keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/
===

#9 reggiereg

reggiereg
  • Topic Starter

  • Members
  • 142 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:34 PM

Posted 21 March 2015 - 05:00 AM

Hi Nasdaq,

 

hear is the information you requested,

 

Kind regards,

 

Reggie.

 

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=a8d20fbb2504f74692aaf02029d7bc6b
# engine=23007
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2015-03-21 08:51:20
# local_time=2015-03-21 08:51:20 (+0000, GMT Standard Time)
# country="United Kingdom"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='avast! Antivirus'
# compatibility_mode=783 16777213 71 94 178964 11055460 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 60995 179392929 0 0
# scanned=830412
# found=0
# cleaned=0
# scan_time=38751


#10 nasdaq

nasdaq

  • Malware Response Team
  • 38,764 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:34 PM

Posted 21 March 2015 - 08:30 AM

Looking good.

#11 reggiereg

reggiereg
  • Topic Starter

  • Members
  • 142 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:34 PM

Posted 21 March 2015 - 08:43 AM

Thanks for your help,

 

Kind regards,

 

Reggie :)



#12 nasdaq

nasdaq

  • Malware Response Team
  • 38,764 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:34 PM

Posted 21 March 2015 - 12:31 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users