Sponsored By

momof3

Members
  • Content count

    12
  • Joined

  • Last visited

About momof3

  • Rank
    Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. momof3

    Hacked comp

    Just booted up and told me my recycle bin in corrupt???
  2. momof3

    Hacked comp

    Booted up well and appears to running a lot faster thank you
  3. momof3

    Hacked comp

    # DelFix v1.013 - Logfile created 11/09/2016 at 19:21:53 # Updated 17/04/2016 by Xplode # Username : Jolene - JOLAPTOP # Operating System : Windows 10 Home (64 bits) ~ Removing disinfection tools ... Deleted : C:\_OTL Deleted : C:\AdwCleaner Deleted : C:\Users\Jolene\Desktop\dds.txt Deleted : C:\Users\Jolene\Desktop\JRT.txt Deleted : C:\Users\Jolene\Downloads\adwcleaner_6.010.exe Deleted : C:\Users\Jolene\Downloads\dds.com Deleted : C:\Users\Jolene\Downloads\Extras.Txt Deleted : C:\Users\Jolene\Downloads\JRT.exe Deleted : C:\Users\Jolene\Downloads\OTL.Txt Deleted : HKLM\SOFTWARE\OldTimer Tools ~ Creating registry backup ... OK ~ Cleaning system restore ... Deleted : RP #1 [Windows Update | 09/10/2016 15:46:33]
  4. momof3

    Hacked comp

    All processes killed ========== OTL ========== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully! 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B96863F5-3A7F-4F88-A08A-6C3A3D8811F1}\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B96863F5-3A7F-4F88-A08A-6C3A3D8811F1}\ not found. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D944BB61-2E34-4DBF-A683-47E505C587DC}\ not found. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully! Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D944BB61-2E34-4DBF-A683-47E505C587DC}\ not found. HKEY_USERS\S-1-5-21-2220262111-1223720106-2740516049-1002\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully! Registry key HKEY_USERS\S-1-5-21-2220262111-1223720106-2740516049-1002\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found. Registry key HKEY_USERS\S-1-5-21-2220262111-1223720106-2740516049-1002\Software\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D944BB61-2E34-4DBF-A683-47E505C587DC}\ not found. Unable to set value : HKEY_USERS\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E! Registry key HKEY_USERS\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\SearchScopes\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}\ not found. Registry key HKEY_USERS\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\SearchScopes\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}\ not found. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\zh_TW folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\zh_CN folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\vi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\uk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\tr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\th folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\sv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\sr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\sl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\sk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ru folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ro folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\pt_PT folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\pt_BR folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\pl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\no folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\nl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ms folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\lv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\lt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ko folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ja folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\it folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\id folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\hu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\hi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\he folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\fr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\fil folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\fi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\et folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\es_419 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\es folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\en_US folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\en_GB folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\el folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\de folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\da folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\cs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ca folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\bg folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ar folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\zh_TW folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\zh_CN folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\vi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\uk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\tr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\th folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ru folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ro folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\pt_PT folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\pt_BR folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\pl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\no folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\nl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ms folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\lv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\lt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ko folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ja folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\it folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\id folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\hu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\hi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\he folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\fr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\fil folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\fi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\et folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\es_419 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\es folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\en_US folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\en_GB folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\el folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\de folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\da folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\cs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ca folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\bg folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ar folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\zh_TW folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\zh_CN folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\vi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\uk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\tr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\th folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ru folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ro folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\pt_PT folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\pt_BR folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\pl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\no folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\nl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ms folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\lv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\lt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ko folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ja folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\it folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\id folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\hu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\hr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\hi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\he folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\fr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\fil folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\fi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\eu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\et folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\es_419 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\es folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\en_US folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\en_GB folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\el folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\de folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\da folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\cs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ca folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\bg folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ar folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\zh_TW folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\zh_CN folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\vi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\uk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\tr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\th folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\sv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\sr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\sl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\sk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ru folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ro folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\pt_PT folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\pt_BR folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\pl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\no folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\nl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\lv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\lt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ko folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ja folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\it folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\id folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\hu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\hr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\hi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\he folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\fr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\fil folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\fi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\es folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\en folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\el folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\de folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\da folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\cs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ca folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\bg folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ar folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\popup\translations folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\popup\styles\fonts folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\popup\styles folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\popup\scripts folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\popup\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\popup folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\pages folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\offline folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\data folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\shared folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\native\libs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\native folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\supertab\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\supertab\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\supertab\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\supertab folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\search\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\search\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\search folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\radio\radioWrapper folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\radio\foreground folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\radio\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\radio\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\radio folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\moviereviews\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\moviereviews\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\moviereviews\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\moviereviews\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\moviereviews folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\defaultSearch\foreground folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\defaultSearch\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\defaultSearch folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\api\window folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\api\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components\api folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\components folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\weather\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\weather\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\weather folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\topapps\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\topapps\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\topapps folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\test folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\rss\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\rss folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\radio\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\radio\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\radio folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets\common folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api\widgets folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\widget-api folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\weather\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\weather folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\uninstall\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\uninstall folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\thirdparty\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\thirdparty folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\rss\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\rss folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\menu\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\menu\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\menu\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\menu\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\menu\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\menu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\link\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\link folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\generic\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\generic folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\flare\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\flare\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\flare folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\embedscript\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\embedscript\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\embedscript\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\embedscript folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\embedhtml\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\embedhtml\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\embedhtml\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\embedhtml folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\alert\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\alert folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\abstractbutton\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components\abstractbutton folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\components folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common\adapter folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\common folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdobakplmmicnnhioedbifobmpoaglac\1.4.0_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdobakplmmicnnhioedbifobmpoaglac\1.4.0_0\lib folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdobakplmmicnnhioedbifobmpoaglac\1.4.0_0\img folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdobakplmmicnnhioedbifobmpoaglac\1.4.0_0\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdobakplmmicnnhioedbifobmpoaglac\1.4.0_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\zh_TW folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\zh_CN folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\vi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\uk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\tr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\th folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\sv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\sr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\sl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\sk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ru folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ro folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\pt_PT folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\pt_BR folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\pl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\no folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\nl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ms folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\lv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\lt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ko folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ja folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\it folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\id folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\hu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\hi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\he folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\fr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\fil folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\fi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\et folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\es_419 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\es folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\en_US folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\en_GB folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\el folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\de folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\da folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\cs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ca folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\bg folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ar folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\shared folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\native\libs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\native folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\supertab\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\supertab\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\supertab\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\supertab folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\search\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\search\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\search folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\radio\radioWrapper folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\radio\foreground folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\radio\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\radio\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\radio folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\moviereviews\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\moviereviews\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\moviereviews\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\moviereviews\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\moviereviews folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\defaultSearch\foreground folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\defaultSearch\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\defaultSearch folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\api\window folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\api\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components\api folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\components folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\weather\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\weather\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\weather folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\topapps\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\topapps\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\topapps folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\test folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\rss\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\rss folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\radio\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\radio\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\radio folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets\common folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api\widgets folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\widget-api folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\weather\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\weather folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\uninstall\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\uninstall folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\thirdparty\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\thirdparty folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\rss\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\rss folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\menu\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\menu\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\menu\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\menu\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\menu\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\menu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\link\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\link folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\generic\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\generic folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\flare\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\flare\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\flare folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\embedscript\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\embedscript\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\embedscript\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\embedscript folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\embedhtml\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\embedhtml\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\embedhtml\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\embedhtml folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\alert\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\alert folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\abstractbutton\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components\abstractbutton folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\components folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common\adapter folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\common folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\zu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\zh_TW folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\zh_HK folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\zh_CN folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\vi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ur folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\uk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\tr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\th folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\te folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ta folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\sw folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\sv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\sr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\sl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\sk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\si folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ru folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ro folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\pt_PT folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\pt_BR folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\pl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\no folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\nl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ne folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ms folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\mr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\mn folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ml folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\lv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\lt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\lo folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ko folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\kn folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\km folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ka folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ja folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\iw folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\it folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\is folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\id folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\hy folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\hu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\hr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\hi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\gu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\gl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\fr_CA folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\fr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\fil folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\fi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\fa folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\eu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\et folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\es_419 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\es folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\en_US folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\en_GB folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\el folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\de folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\da folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\cs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ca folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\bn folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\bg folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\az folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\ar folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\am folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales\af folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\_locales folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkpllchojjkbgephbbeacaahecgfpga\2.2.104_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkpllchojjkbgephbbeacaahecgfpga\2.2.104_0\lib folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkpllchojjkbgephbbeacaahecgfpga\2.2.104_0\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkpllchojjkbgephbbeacaahecgfpga\2.2.104_0\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkpllchojjkbgephbbeacaahecgfpga\2.2.104_0\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkpllchojjkbgephbbeacaahecgfpga\2.2.104_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\shared folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\native\libs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\native folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\supertab\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\supertab\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\supertab\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\supertab folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\search\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\search\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\search folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\radio\radioWrapper folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\radio\foreground folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\radio\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\radio\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\radio folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\moviereviews\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\moviereviews\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\moviereviews\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\moviereviews\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\moviereviews folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\defaultSearch\foreground folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\defaultSearch\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\defaultSearch folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\api\window folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\api\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components\api folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\components folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\weather\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\weather\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\weather folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\topapps\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\topapps\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\topapps folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\test folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\rss\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\rss folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\radio\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\radio\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\radio folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets\common folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api\widgets folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\widget-api folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\weather\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\weather folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\uninstall\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\uninstall folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\thirdparty\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\thirdparty folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\rss\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\rss folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\menu\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\menu\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\menu\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\menu\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\menu\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\menu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\link\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\link folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\generic\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\generic folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\flare\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\flare\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\flare folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\embedscript\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\embedscript\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\embedscript\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\embedscript folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\embedhtml\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\embedhtml\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\embedhtml\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\embedhtml folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\alert\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\alert folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\abstractbutton\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components\abstractbutton folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\components folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common\adapter folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\common folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\zh_TW folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\zh_CN folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\vi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\uk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\tr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\th folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\sv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\sr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\sl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\sk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\ru folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\ro folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\pt_PT folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\pt_BR folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\pl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\nl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\nb folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\lv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\lt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\ko folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\ja folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\it folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\id folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\hu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\hr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\hi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\fr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\fil folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\fi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\et folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\es_419 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\es folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\en_GB folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\en folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\el folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\de folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\da folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\cs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\ca folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales\bg folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\_locales folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\pages folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\js\lib folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\img\notification-overlays folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\img\notification-icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\img\animation folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\img folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\font folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\css\select2 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\css\pickadate folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\shared folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\native\libs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\native folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\supertab\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\supertab\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\supertab\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\supertab folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\search\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\search\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\search folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\radio\radioWrapper folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\radio\foreground folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\radio\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\radio\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\radio folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\moviereviews\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\moviereviews\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\moviereviews\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\moviereviews\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\moviereviews folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\defaultSearch\foreground folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\defaultSearch\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\defaultSearch folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\api\window folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\api\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components\api folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\components folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\weather\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\weather\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\weather folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\topapps\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\topapps\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\topapps folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\test folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\rss\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\rss folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\radio\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\radio\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\radio folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets\common folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api\widgets folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\widget-api folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\weather\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\weather folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\uninstall\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\uninstall folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\thirdparty\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\thirdparty folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\rss\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\rss folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\menu\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\menu\images folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\menu\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\menu\css folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\menu\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\menu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\link\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\link folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\generic\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\generic folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\flare\icons folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\flare\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\flare folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\embedscript\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\embedscript\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\embedscript\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\embedscript folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\embedhtml\js folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\embedhtml\html folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\embedhtml\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\embedhtml folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\alert\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\alert folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\abstractbutton\background folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components\abstractbutton folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\components folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common\adapter folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\common folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\zh_TW folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\zh_CN folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\vi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\uk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\tr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\th folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\sr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\sl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\sk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\se folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ru folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ro folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\pt_PT folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\pt_BR folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\pl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\no folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\nl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\lv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\lt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ko folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ja folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\it folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\id folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\hu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\hr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\hi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\fr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\fil folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\fi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\es folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\en folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\el folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\de folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\da folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\cs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ca folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\bg folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ar folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0 folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_metadata folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\zh_TW folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\zh folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\vi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\uk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\tr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\th folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\te folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\ta folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\sw folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\sv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\sr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\sl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\sk folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\ru folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\ro folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\pt_PT folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\pt_BR folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\pt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\pl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\nl folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\nb folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\ms folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\mr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\ml folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\lv folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\lt folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\ko folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\kn folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\ja folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\iw folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\it folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\id folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\hu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\hr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\hi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\gu folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\fr folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\fil folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\fi folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\fa folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\et folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\es folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\en folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\el folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\de folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\da folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\cs folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\ca folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\bn folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\bg folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\ar folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales\am folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\_locales folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\cloud_route_details folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\cast_setup folder moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0 folder moved successfully. Registry value HKEY_USERS\S-1-5-21-2220262111-1223720106-2740516049-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully! 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully. File Protocol\Handler\wlpg - No CLSID value found not found. 64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found. 64bit-Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages:livessp deleted successfully. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages:livessp deleted successfully. ========== COMMANDS ========== [EMPTYJAVA] User: Administrator User: All Users User: Default User: Default User User: Default.migrated User: Jolene User: Public Total Java Files Cleaned = 0.00 mb [EMPTYFLASH] User: Administrator User: All Users User: Default User: Default User User: Default.migrated User: Jolene ->Flash cache emptied: 492 bytes User: Public Total Flash Files Cleaned = 0.00 mb [EMPTYTEMP] User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default.migrated User: Jolene ->Temp folder emptied: 10474772 bytes ->Temporary Internet Files folder emptied: 1097780 bytes ->Google Chrome cache emptied: 442713216 bytes ->Flash cache emptied: 0 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 801406 bytes RecycleBin emptied: 582602 bytes Total Files Cleaned = 435.00 mb C:\WINDOWS\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully Restore point Set: OTL Restore Point OTL by OldTimer - Version 3.2.69.0 log created on 09112016_105301 Files\Folders moved on Reboot... File\Folder C:\Users\Jolene\AppData\Local\Temp\etilqs_MGFpcgzGhfFXmN6 not found! File\Folder C:\Users\Jolene\AppData\Local\Temp\etilqs_ZMfK4NjQqDNfZfY not found! C:\Users\Jolene\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Cache\data_4 moved successfully. C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Cache\index moved successfully. PendingFileRenameOperations files... Registry entries deleted on Reboot...
  5. momof3

    Hacked comp

    OTL Extras logfile created on: 9/11/2016 9:26:56 AM - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jolene\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.11.14393.0) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 5.60 Gb Total Physical Memory | 3.17 Gb Available Physical Memory | 56.59% Memory free 7.22 Gb Paging File | 4.57 Gb Available in Paging File | 63.29% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 442.04 Gb Total Space | 388.58 Gb Free Space | 87.91% Space Free | Partition Type: NTFS Drive D: | 21.78 Gb Total Space | 2.16 Gb Free Space | 9.93% Space Free | Partition Type: NTFS Computer Name: JOLAPTOP | User Name: Jolene | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation) [HKEY_USERS\S-1-5-21-2220262111-1223720106-2740516049-1002\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) htmlfile [opennew] -- Reg Error: Key error. htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Powershell] -- powershell.exe -noexit -command Set-Location '%V' (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) htmlfile [opennew] -- Reg Error: Key error. http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Powershell] -- powershell.exe -noexit -command Set-Location '%V' (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = C4 98 78 84 E7 08 D2 01 [binary data] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade] "UpgradeTime" = [binary data] "DontEnumerateCommonFilesUpgradeExe" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade] "UpgradeTime" = Reg Error: Unknown registry data type -- File not found ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{43FF4552-6725-4F71-A088-BFE3DF92927E}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{5FB5BA52-6BC3-4CCF-B61C-488487A066AF}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe | "{89B85118-266B-460B-B4CB-8EB5AC68E3C7}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{03D2E8E8-58F9-4837-9E67-7CA7C9356E55}" = dir=out | name=box for windows 8 | "{06977F5C-BA60-4BB4-9DF2-F94C7E6140A6}" = dir=out | [email protected]{microsoft.windows.shellexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} | "{0744FFD5-DC8F-4BBE-B419-FBFE5F944D13}" = dir=out | name=savings center featured offers | "{07B420DF-48D5-4372-AC18-9764D5A5F898}" = dir=out | [email protected]{microsoft.windows.parentalcontrols_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} | "{09A3FC0D-DDC0-46AD-BF16-0E7356401903}" = dir=in | n[email protected]{microsoft.bingsports_4.13.47.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} | "{0B4EB7F8-ED5C-4710-B1A6-D0DDAE529B32}" = dir=out | [email protected]{microsoft.lockapp_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} | "{0C64F3B1-2219-4C35-8691-206C90F96B9C}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{101022DB-DC3D-4E6E-885E-8D49AEB31987}" = dir=out | name=sway | "{152CD365-2B32-4AB0-B7DB-D0D5665BA417}" = dir=out | [email protected]{microsoft.windows.contentdeliverymanager_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} | "{16A9299E-B6A9-4DA6-AB72-8D8F7320CA42}" = dir=out | [email protected]{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | "{186636F8-A8A7-430F-898D-F3A32AA6B480}" = dir=in | name=box for windows 8 | "{191487FE-D290-4C6D-BE29-896BB8402A76}" = dir=out | name=windows_ie_ac_001 | "{1A88C478-FFD0-4A19-93C7-F392394F2866}" = dir=out | [email protected]{microsoft.bingtravel_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} | "{1A94EEA9-4B84-4A57-AE16-D7E918054A7B}" = dir=in | [email protected]{microsoft.zunemusic_3.6.23981.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} | "{1DA2066D-7564-4874-9CD9-45335C2AAE38}" = dir=in | [email protected]{ad2f1837.gettingstartedwithwindows8_1.6.0.0_neutral__v10z8vjag6ke6?ms-resource://ad2f1837.gettingstartedwithwindows8/resources/id_app_title} | "{1E015272-A108-45B4-B06C-94729F2197D6}" = dir=in | [email protected]{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} | "{222AD036-553C-424D-A8BA-90FE006DF94C}" = dir=out | [email protected]{microsoft.bingnews_4.13.47.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} | "{23C65763-591B-4287-88D5-19CF78045D6A}" = dir=in | [email protected]{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} | "{24537A88-29B9-4EBC-A425-35E689C45EEC}" = dir=out | name=snapfish | "{25336F4C-8942-424D-A956-5258007C6A5E}" = dir=in | [email protected]{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | "{25D0BBFA-68B4-4EB6-8BBC-E7A88FAFC733}" = dir=out | [email protected]{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} | "{2A7297B0-596B-4320-81A0-B0F87B86AC3F}" = dir=out | [email protected]{microsoft.xboxgamecallableui_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} | "{2C7990ED-3566-41C5-8C1C-CC16FF6D8EFD}" = dir=out | [email protected]{microsoft.connectivitystore_1.1604.4.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.connectivitystore/mswifiresources/appstorename} | "{2CB3EC34-5456-4640-B174-4F9F56B0863B}" = dir=in | [email protected]{microsoft.bingweather_4.13.47.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} | "{2D3EA17A-3CF4-47F3-A2B8-452099A3D37E}" = dir=out | [email protected]{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} | "{30F6F39A-4992-4357-9FE0-3F4B418C5894}" = dir=out | [email protected]{microsoft.windowsmaps_5.1608.2311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} | "{324F1506-8C3A-42D1-8EBB-69FF08F4BD40}" = dir=out | [email protected]{ad2f1837.gettingstartedwithwindows8_1.6.0.0_neutral__v10z8vjag6ke6?ms-resource://ad2f1837.gettingstartedwithwindows8/resources/id_app_title} | "{33E3EF3D-32E6-4BE3-9286-E99519FF41B0}" = dir=out | name=xbox | "{37687829-EDF4-4514-AC73-71DD14A4C240}" = dir=in | [email protected]{microsoft.bingfinance_4.13.47.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} | "{38A19AFB-47EA-414D-AF40-82E3220493A3}" = dir=out | [email protected]{microsoft.getstarted_4.0.12.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} | "{3D354CAE-2B6E-45AD-8DE4-C6EEFE22AEC0}" = dir=out | [email protected]{microsoft.windows.contentdeliverymanager_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} | "{40CE617F-E2AD-40A2-9785-B943E497A1CA}" = dir=out | [email protected]{microsoft.zunevideo_3.6.23941.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} | "{42BEF5A3-4AD7-4CF7-AD94-1B0EF0980E80}" = dir=in | name=hp+ | "{4AC48F04-41A2-4B85-9860-B89425EB16BD}" = dir=out | name=candy crush soda saga | "{4B9DDDAE-F562-49B9-B193-391585D1F7FB}" = dir=in | [email protected]{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} | "{4C9B56D6-F591-47C9-B9ED-B8BF41241ABF}" = dir=out | [email protected]{microsoft.bingweather_4.13.47.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} | "{4CB123ED-1C29-4178-904D-931E563F7AEA}" = dir=in | app=c:\users\administrator\appdata\local\microsoft\skydrive\skydrive.exe | "{4CB5AFAF-8068-40E5-8F0B-CAE4D2DB0EB6}" = dir=in | [email protected]{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} | "{4CC5A5E0-A28A-40D7-84C8-12180792427D}" = dir=out | [email protected]{microsoft.lockapp_10.0.14393.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} | "{4D0C1C55-DB8B-4DC5-8B2A-F45B89D4B90F}" = dir=out | [email protected]{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} | "{4D1E93FE-2916-452C-9C28-E8D79883DDAE}" = dir=out | [email protected]{microsoft.xboxgamecallableui_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} | "{4D6A9422-CB80-46A0-9871-04A0D150B30B}" = dir=out | name=hp registration | "{5197E67B-6839-4708-B032-E3F3E1C78D46}" = dir=in | [email protected]{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} | "{51E27032-6C65-4D0A-BAF6-25CF9D67D58B}" = dir=in | [email protected]{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} | "{52F34AA5-CDB3-47EC-98BB-E4D2A4EECCEE}" = dir=out | [email protected]{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} | "{53409CEE-AFB8-4079-B020-4E396B360634}" = dir=out | [email protected]{microsoft.accountscontrol_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} | "{53B0993B-A31A-496E-814D-6B71ABB22BCA}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd10\powerdvd10.exe | "{558D99F5-1E28-4731-BC09-D1E69AB8AE03}" = dir=out | [email protected]{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} | "{571AC5F3-9D3A-4488-9ED3-D5842C67D73A}" = dir=out | [email protected]{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} | "{5D5984C0-272C-490E-857E-224F33903641}" = dir=in | name=savings center featured offers | "{60A04EBA-8330-431B-83E1-E9671C45392B}" = dir=out | [email protected]{microsoft.windows.photos_16.722.10060.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} | "{649648C4-559B-43A3-933B-BD0E09D88D83}" = dir=out | [email protected]{microsoft.windowsfeedback_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} | "{665333AE-64E1-4CF9-8445-314C506897C6}" = dir=out | [email protected]{microsoft.oneconnect_1.1605.17.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} | "{68406AD9-1A52-49DF-A816-3B90F8EEFCDE}" = dir=in | [email protected]{microsoft.windowscommunicationsapps_17.7167.40727.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} | "{6DBAFA0D-F5BF-4FAF-A7B6-5A196A246765}" = dir=in | [email protected]{microsoft.windows.featureondemand.insiderhub_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.featureondemand.insiderhub/resources/appstorename} | "{6F78FCB5-AAA8-4AA9-B2F5-76833E1E8FD4}" = dir=in | [email protected]{microsoft.windowsstore_11607.1001.51.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} | "{6FBD5EA8-3A3E-4374-8B1B-ACFCC1DB9716}" = dir=out | name=microsoft solitaire collection | "{7141057F-E4ED-4B4C-BA5D-27712D69D497}" = dir=in | name=netflix | "{722F7C4A-8E44-4064-BCB7-F46BA277CA32}" = dir=in | [email protected]{microsoft.commsphone_1.10.15000.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.commsphone/resources/appstorename} | "{73D107B7-BE85-46CA-A7A3-B0619AB9CA43}" = dir=out | [email protected]{microsoft.bingfinance_4.13.47.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} | "{7462B2F5-B001-46DA-89DD-40D21D1BC6E1}" = dir=out | [email protected]{microsoft.accountscontrol_10.0.14393.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} | "{7C154003-8565-43A0-B029-37E7DE3B236F}" = dir=out | name=netflix | "{7F193249-E2B4-46CB-AB02-5C3AF33809B8}" = dir=in | name=microsoft mahjong | "{7F6CCF33-3AB1-4ED9-8F9B-E1B0D22CC77F}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{806EA9C7-B7D9-4BAF-A69E-58264EF5C6FE}" = dir=in | [email protected]{microsoft.zunevideo_3.6.23941.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} | "{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | [email protected]{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{82CE200D-3FA4-4600-9359-4D56FCD4E735}" = dir=in | [email protected]{microsoft.skypeapp_11.7.113.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} | "{84898F41-1F91-480B-9CF2-5BAB7DE6A5EE}" = dir=in | [email protected]{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} | "{86016149-D95E-467B-9EA6-5D020E306733}" = dir=out | [email protected]{microsoft.bingsports_4.13.47.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} | "{9312F368-FD6B-4EE1-BA12-A3E48FD06103}" = dir=out | [email protected]{microsoft.windowsphone_10.1608.2211.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} | "{934A5447-5D8E-4262-97CF-863C5962F537}" = dir=out | [email protected]{microsoft.commsphone_1.10.15000.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.commsphone/resources/appstorename} | "{93C012D1-0640-4BE9-B45B-7AD59F0CFFEF}" = dir=out | [email protected]{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} | "{95448513-0A46-4F82-90EE-F473520C484E}" = dir=out | [email protected]{microsoft.windowsstore_11607.1001.51.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} | "{9849CF77-395B-4C45-814B-2F81584755D4}" = dir=out | name=windows_ie_ac_001 | "{99847463-CAEF-4426-8722-1F2954AF1C2D}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{9B3EAB17-C76B-4AAE-A635-2AD4532C828A}" = dir=out | [email protected]{microsoft.3dbuilder_11.1.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} | "{9EEA2CB8-844D-4BE5-8F20-38E34F08D013}" = dir=in | [email protected]{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | "{9EF76086-E81C-46BE-BB8C-80C2677AA507}" = dir=out | name=twitter | "{9F459F87-4371-41FC-8B4E-A93B30213E50}" = dir=out | name=store purchase app | "{A39EFEAF-8D5D-48C3-8A96-48FE83E69267}" = dir=in | name=sway | "{A884C8ED-4BE5-487E-9028-4EBFC4DA875F}" = dir=in | [email protected]{microsoft.windowsfeedbackhub_1.3.1741.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} | "{A99B1010-10C2-4E02-B020-96D432B07B6A}" = dir=out | [email protected]{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | "{AC0141CE-E39D-4649-810F-A8E1811BECF6}" = dir=out | [email protected]{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} | "{AD441DB2-3AC6-4685-BD23-EE18D79EC5C1}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | "{AE9EA8C9-3E92-4888-A14C-69FB5F422402}" = dir=out | name=norton studio | "{B6C6EEA7-8A34-4846-AFCA-75EEE13C045B}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{B9A9C2DA-9B5C-4A50-8AD6-F1C39857AEF4}" = dir=out | [email protected]{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} | "{BA85EDA0-37F4-4EDA-A772-0615720FDC84}" = dir=out | [email protected]{microsoft.windowscommunicationsapps_17.7167.40727.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} | "{BC9ACBEA-D176-4A91-AE52-4ACC3068E2B1}" = dir=out | [email protected]{microsoft.windowsfeedbackhub_1.3.1741.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} | "{BE3C2BF8-C9AF-4986-A57F-8EC958D58D39}" = dir=in | name=onenote | "{C08184DB-467C-412F-BEE1-5D1A1B4400A6}" = dir=out | [email protected]{microsoft.windows.featureondemand.insiderhub_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.featureondemand.insiderhub/resources/appstorename} | "{C0DFDF17-02D8-4719-8510-4EF702AB08AA}" = dir=out | [email protected]{microsoft.windows.parentalcontrols_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} | "{C12F3166-D54F-48BF-BC86-41D7C067A000}" = dir=out | name=hp+ | "{C647C8BA-38F4-4A58-A82F-CA15E16EF035}" = dir=out | name=onenote | "{C6992BEA-48FD-4F4F-A11C-97D9A7D27208}" = dir=in | [email protected]{microsoft.bingnews_4.13.47.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} | "{C8FD9CAA-0270-423E-9AFD-07F27EFA790F}" = dir=in | [email protected]{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} | "{CB511705-D2C4-4E3B-9DBE-6F449FB14C6A}" = dir=in | [email protected]{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} | "{CD8BA6C2-D77C-4C24-827F-8A15F1349733}" = dir=out | name=hp games | "{CE58EF9B-0F46-4ADE-AEA2-5AA903DFE722}" = dir=out | [email protected]{microsoft.people_10.0.11902.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} | "{D1242E14-8B86-495B-9394-5F3BC4D4FFAA}" = dir=out | [email protected]{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} | "{D4351A78-7B2A-498B-ABAF-578E4B176AAB}" = dir=out | [email protected]{microsoft.skypeapp_11.7.113.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} | "{D5E6E066-8E80-44FC-8CF3-B6B864149366}" = dir=in | [email protected]{microsoft.microsoftofficehub_17.7319.23511.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} | "{D72C53F6-E3B1-45E1-B171-E5F58DDDF9B7}" = dir=out | [email protected]{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} | "{DB3E396F-8F23-430E-A66C-83E4F552B165}" = dir=out | [email protected]{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} | "{DCB1336A-4433-4AD0-824B-4267907D5388}" = dir=out | [email protected]{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} | "{DDD24E8E-4194-4221-B71A-66FDABFCB8A5}" = dir=in | [email protected]{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} | "{DE76C11C-6379-42E3-A90D-D5B2161ADBB1}" = dir=in | name=microsoft sticky notes | "{DEF33F57-7AA7-4C71-BCE8-EC51E1133585}" = dir=out | [email protected]{microsoft.xboxidentityprovider_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} | "{DF22BA0A-B0E9-4F83-AEF7-11A571BBD0C8}" = dir=out | name=youcam for hp | "{DF6BD7A2-5466-4015-A757-FC7E7BF9139B}" = dir=out | [email protected]{microsoft.xboxidentityprovider_11.19.19003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxidentityprovider/resources/displayname} | "{E61B4363-DCF1-4DCA-8728-B6BA0804C398}" = dir=in | name=xbox | "{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | [email protected]{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{E8D7FB93-8628-4C36-9E75-839344E4C784}" = dir=in | [email protected]{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} | "{E9B20839-A82F-48A4-BB4F-05485FA7ACC7}" = dir=out | [email protected]{microsoft.microsoftofficehub_17.7319.23511.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} | "{E9E952D6-DD1E-464E-91FA-657F0A6102BE}" = dir=out | [email protected]{microsoft.windows.apprep.chxapp_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} | "{ED904111-7B3D-4EC3-A67A-E87EE1E0247C}" = dir=in | [email protected]{microsoft.windows.photos_16.722.10060.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} | "{F25CEC8D-3A38-4A2C-97AC-CD66BF9245AC}" = dir=out | [email protected]{microsoft.zunemusic_3.6.23981.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} | "{F36CBF3D-0D87-4208-AAEA-FCEC493168F8}" = dir=out | name=windows_ie_ac_001 | "{F4BD7BE8-EDC8-46D9-9DA3-634281713F19}" = dir=in | name=microsoft solitaire collection | "{F965D05E-991A-4F7A-8810-A41F233817FC}" = dir=out | name=microsoft sticky notes | "{FB8A748B-6AD2-4BC0-B13A-D19C2417BA90}" = dir=out | name=kindle | "{FC7F8E57-8456-4184-AB95-02FD76B920B5}" = dir=out | name=microsoft mahjong | "{FF8E0F68-C7BB-476B-9C78-695C526F9416}" = dir=out | name=ebay | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{063E67F0-C298-8A2A-0FA6-84C15322A4E0}" = ccc-utility64 "{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition) "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{50268784-08D9-2A2F-9ECE-EADFC45DC50C}" = ccc-utility64 "{6E14E6D6-3175-4E1A-B934-CAB5A86367CD}" = HP Postscript Converter "{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour "{73237EBB-B26F-4628-8754-4EFE563D72E9}" = HP Utility Center "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{9CBEB415-30E0-B748-8FAB-0575E433E9DE}" = AMD Fuel "{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 "{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 "{CB4C08E3-800F-65F6-9C00-06814A6B7CE7}" = AMD Catalyst Install Manager "{D1E8F2D7-7794-4245-B286-87ED86C1893C}" = HP Registration Service "{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 "{E7366CA8-7179-77AE-E712-BA18D70A0A07}" = AMD Fuel "{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64 "SynTPDeinstKey" = Synaptics Pointing Device Driver [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam "{0454BB9A-2A7A-4214-BDFF-937F7A711A44}" = Windows Live Communications Platform "{07326A3E-02B3-1078-25D7-B8666BA8FE15}" = CCC Help Korean "{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements "{085EBD0C-F24E-EB94-6D33-2A22EF64C5CF}" = CCC Help Finnish "{0B4A6673-753A-9533-45BA-1F355715D9FC}" = CCC Help English "{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}" = Realtek PCIE Card Reader "{108B9AEB-5E19-1A4D-BE19-4856C0DCE6F3}" = CCC Help Thai "{11087D24-567D-7D88-69C6-D7A08B5F4C47}" = Catalyst Control Center - Branding "{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 "{18272881-CFC0-434D-A975-E5BE44206AA0}" = Windows Live UX Platform Language Pack "{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 "{1AD99E77-37CC-744E-39CA-67F6FD34565A}" = Catalyst Control Center Localization All "{1AE37508-089E-41AC-95BD-99FF06887C2F}" = HP Recovery Manager "{1BB85E73-0D92-604A-0AAF-C7AAD5E3A3C6}" = CCC Help English "{1E72F5D1-553E-CFF9-06A3-8C5AF507DD1C}" = CCC Help French "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10 "{1FE80340-264B-4374-8F1C-252931AB3C6A}" = CCC Help Japanese "{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 "{25ACE797-EBDA-0E4B-096F-9FE97A1E2A6F}" = CCC Help Russian "{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}" = CyberLink Power2Go 8 "{2D07E15C-A9A4-D8D6-D371-92EC8779E587}" = CCC Help Hungarian "{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 "{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App "{30F99474-EBE3-4134-A02B-F6CD38CFE243}" = Photo Gallery "{34C4C52E-E614-E554-2536-0ABAA2D68CE4}" = CCC Help Russian "{350E61E5-6C2C-2F3C-3A14-7E094AB6D3A0}" = CCC Help Spanish "{35A71DED-DA81-1313-352A-EC8A0B27DF3B}" = CCC Help Chinese Standard "{35D41250-CC6E-D266-4A00-958F52562A20}" = CCC Help Korean "{3D10A855-D379-A188-EE50-64548E1B1976}" = CCC Help Italian "{3E2EE595-F2BD-8D77-EA86-5B48D407D548}" = Catalyst Control Center InstallProxy "{4780D5B0-1CE0-CE1A-2F0A-047D12ED04E3}" = CCC Help Czech "{4CCBD1F4-CEEC-452A-9CB8-46564B501315}" = Windows Live UX Platform "{5342F310-0B71-761E-48AC-4FBB9D4AD080}" = Catalyst Control Center Localization All "{574F0207-8E98-46CD-8F79-318348C98C46}" = HP Quick Start "{5BABDA39-61CF-41EE-992D-4054B6649A9B}" = Movie Maker "{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{64D5A142-BD50-726E-ED9E-D2508D2A17E2}" = Catalyst Control Center InstallProxy "{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}" = Windows Live PIMT Platform "{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.2.1.1 "{6FDCB1C3-9EDC-3CBC-473C-DD85ED5E0494}" = CCC Help German "{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp" = WildTangent Games App (HP Games) "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{77750E8C-A73A-1DEE-DA3E-6B6FB768A4C0}" = CCC Help Chinese Standard "{79D22166-78C1-2AD4-04E7-BD22BD58FD46}" = CCC Help Chinese Traditional "{7B902CB5-6016-71B6-7388-33D8BDD58D4A}" = CCC Help German "{7F1EE4DD-4801-DDF7-1083-0AF6C246EA61}" = CCC Help Turkish "{82CA1714-13EA-F419-91FE-12834424745E}" = CCC Help Italian "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver "{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}" = Windows Live SOXE Definitions "{8A96F685-A07B-2546-54A6-4CCBD119FA41}" = CCC Help Finnish "{8C1ADF61-4F87-44BC-804C-C20FC70D98BB}" = HP Documentation "{8CBC65A3-40AB-DE65-2CB1-997ABDA8FD68}" = CCC Help Turkish "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110 "{8FFCCB27-EE2D-D58F-5ABD-ED5C06B91E81}" = CCC Help Swedish "{90150000-0138-0409-0000-0000000FF1CE}" = Microsoft Office "{941DE69D-6CEE-4171-8F1F-3D7E352AA498}" = HP Wireless Button Driver "{97D1CCA5-296D-361F-7A5C-D33B7653EDF5}" = CCC Help Norwegian "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9C35EDE5-4B0F-45E7-A438-314BA889948E}" = HP MyRoom "{A5A6A4D0-2005-2A05-2E21-495808CF95ED}" = CCC Help Norwegian "{A760847A-C4D9-E7EF-716F-07C6CBF6B147}" = CCC Help Thai "{AD59E2EF-0022-6194-C57D-8A3B9140E13F}" = CCC Help Greek "{AED76532-7302-D855-4780-DB177924E005}" = CCC Help French "{AF0FDA86-6E7B-1A6C-51D4-43AF50181ED2}" = AMD Catalyst Control Center "{B27332E6-6781-8804-2355-CB678E218065}" = CCC Help Chinese Traditional "{B2F0406F-1609-489A-8626-7DB46776AB57}" = HP System Event Utility "{B7BF553F-6C08-42DA-FDB2-49C9467070D9}" = CCC Help Spanish "{B839153C-D4D2-F89C-5033-0A160C62706B}" = CCC Help Portuguese "{BBFFE0C6-CDB9-AD66-18AA-F88D28DAC4C0}" = CCC Help Hungarian "{BD3F9DD5-C3A6-3CA1-8523-6121F30781DC}" = CCC Help Swedish "{C034A6F9-6569-491B-B3BF-F5D15221A708}" = Windows Live Essentials "{C1EA3764-1138-AE27-AD63-549BAD99BA15}" = CCC Help Japanese "{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Qualcomm Atheros Driver Installation Program "{C3D13AB8-468A-0174-1D06-DB9AAE8A131B}" = CCC Help Czech "{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}" = Windows Live Installer "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint "{C89A97B6-F991-EBB5-77B7-927BCF420EBE}" = OEM Application Profile "{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}" = Windows Live Photo Common "{CA95D57F-9FC3-0DD7-7C36-362F74D8C04E}" = CCC Help Dutch "{D2993435-FC5D-DFA8-67CB-586957B9302F}" = CCC Help Portuguese "{D5C69738-B486-402E-85AC-2456D98A64E4}" = Windows 10 Upgrade Assistant "{D65D424F-72E7-09A3-4BD4-52331A919873}" = CCC Help Danish "{D888F114-7537-4D48-AF03-5DA9C82D7540}" = Photo Common "{DB751A71-541C-176C-6DBC-13C061769FA1}" = AMD VISION Engine Control Center "{DE0887C8-0A44-2CAA-40EB-340BEE05B0D0}" = Catalyst Control Center Graphics Previews Common "{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E817E580-6318-AFC8-2102-322C73117EC4}" = CCC Help Polish "{EC63AB5A-9694-DA16-6942-43AA10BE5710}" = CCC Help Dutch "{ED6C77F9-4D7E-447C-9EC0-9A212D075535}" = Movie Maker "{EE202411-2C26-49E8-9784-1BC1DBF7DE96}" = HP Support Assistant "{EEEDA52B-3C42-4BD7-BE42-FDB596EAFCEF}" = Catalyst Control Center - Branding "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F4B9B49F-20C7-6FD5-2973-787322D4B53B}" = CCC Help Polish "{F77474EE-EB6C-C87B-88AF-3310C848E068}" = CCC Help Greek "{F8DDBE95-DCBE-03B5-5359-DE3601146E21}" = CCC Help Danish "{FC6C7107-7D72-41A1-A031-3CE751159BAB}" = Photo Gallery "{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 "{FE7C0B3D-50B9-4951-BE78-A321CBF86552}" = Windows Live SOXE "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "Bruteforce Save Data" = Bruteforce Save Data "Google Chrome" = Google Chrome "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam "InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10 "InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}" = CyberLink Power2Go 8 "InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint "InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD "Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.2.1.1043 "WildTangent wildgames Master Uninstall" = WildTangent Games "WinLiveSuite" = Windows Live Essentials "WTA-21b320b5-6610-41f1-9e6a-580e29454de3" = Luxor Evolved "WTA-2438e5cb-65f7-4ee1-9f45-877fb7addcbb" = Mah Jong Medley "WTA-2fc40197-3c4e-4a09-be6c-72c5e0ca0c99" = Bounce Symphony "WTA-32802c3f-72ce-4d5a-bf0e-db42fa62edf8" = Curse at Twilight "WTA-34e39cf8-f182-4100-beae-9453dd39d30e" = Delicious: Emily's Childhood Memories Premium Edition "WTA-353bdaba-936e-4ca9-b267-01559ddbc586" = Bejeweled 3 "WTA-3cbd2532-c0a0-4b26-9ea0-899136c22b71" = House of 1000 Doors: Family Secrets "WTA-51d349a4-3a35-4d9a-9133-56fdd561778d" = Governor of Poker 2 Premium Edition "WTA-53c93ba0-e12c-43f1-92d1-3d26f29b0693" = Airport Mania "WTA-5a094537-e113-4bd4-a60a-d92226b80896" = Plants vs. Zombies - Game of the Year "WTA-5e37b804-fca3-4d3d-a60c-c2cdb108c5e9" = Zuma's Revenge "WTA-6099e869-ceea-4e23-819c-78f633bf552f" = Peggle Nights "WTA-615112d0-3373-485b-81d3-c8fb0c8efeb8" = Mahjongg Dimensions Deluxe: Tiles in Time "WTA-7146a84e-f0e5-4602-ab80-cf80db2d15b0" = Polar Bowler "WTA-799393a1-9533-4e9b-92c9-2084bfa44743" = Azteca "WTA-7a0372c1-44d1-45fe-a034-b7ba75e05f1e" = Tales of Lagoona "WTA-87c5b4ad-728a-4ccd-8281-5986de6c0e54" = Mystery P.I. - Curious Case of Counterfeit Cove "WTA-92fffb70-1f70-40ad-806f-2175cf0a4bd1" = Royal Envoy 2 Collector's Edition "WTA-9c656435-8f75-4dcb-bbf0-d4d5e3057c18" = Cradle Of Egypt Collector's Edition "WTA-a56a2910-b721-4be7-a370-0dc7876b6ea5" = Build-a-lot "WTA-ab461e8b-3f59-4c64-9666-3a24ca2414c5" = Cradle of Rome 2 "WTA-bc9cdc67-e7d9-4cc3-8b61-8ee4a335d80b" = Youda Jewel Shop "WTA-db224cb9-6453-4fbe-b3d4-a25d8dcd62cf" = Farm Frenzy "WTA-e4ef89e0-2e6f-4377-a9a6-40e7e36c3fa7" = Roads of Rome 3 "WTA-ebe5adf7-8312-48a1-b31e-2eb7b321cc28" = Jewel Match 3 "WTA-eefcf787-57d2-4d03-b63d-2cf6b768bbe0" = Vacation Questâ„¢ - Australia "WTA-f59b230b-00d6-48c3-84d9-da53984387af" = 4 Elements II "WUCCCApp" = AMD Catalyst Control Center ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147024865 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147024865 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147024865 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147024865 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147024865 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error - 9/10/2016 10:17:15 PM | Computer Name = JoLaptop | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Activation of app Microsoft.WindowsMaps_8wekyb3d8bbwe!App failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error - 9/10/2016 10:27:21 PM | Computer Name = JoLaptop | Source = Application Error | ID = 1000 Description = Faulting application name: rundll32.exe_ResetEng.dll, version: 10.0.14393.0, time stamp: 0x57899977 Faulting module name: ntdll.dll, version: 10.0.14393.103, time stamp: 0x57b7e207 Exception code: 0xc0000409 Fault offset: 0x00000000000951ff Faulting process id: 0x1c34 Faulting application start time: 0x01d20bd4038fd7e0 Faulting application path: C:\WINDOWS\system32\rundll32.exe Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll Report Id: 58661d8f-893f-433f-ba54-8d22f169593e Faulting package full name: Faulting package-relative application ID: Error - 9/10/2016 10:45:22 PM | Computer Name = JoLaptop | Source = Application Error | ID = 1000 Description = Faulting application name: rundll32.exe_ResetEng.dll, version: 10.0.14393.0, time stamp: 0x57899977 Faulting module name: ntdll.dll, version: 10.0.14393.103, time stamp: 0x57b7e207 Exception code: 0xc0000409 Fault offset: 0x00000000000951ff Faulting process id: 0x1b24 Faulting application start time: 0x01d20bd68a5222bf Faulting application path: C:\WINDOWS\system32\rundll32.exe Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll Report Id: 342c7708-39e8-4494-8715-fe4b66c85b72 Faulting package full name: Faulting package-relative application ID: Error - 9/10/2016 11:05:44 PM | Computer Name = JoLaptop | Source = Application Error | ID = 1000 Description = Faulting application name: rundll32.exe_ResetEng.dll, version: 10.0.14393.0, time stamp: 0x57899977 Faulting module name: ntdll.dll, version: 10.0.14393.103, time stamp: 0x57b7e207 Exception code: 0xc0000409 Fault offset: 0x00000000000951ff Faulting process id: 0x18a4 Faulting application start time: 0x01d20bd9629305d3 Faulting application path: C:\WINDOWS\system32\rundll32.exe Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll Report Id: 71aea5ff-36db-4209-9ba1-7277b762a70a Faulting package full name: Faulting package-relative application ID: Error - 9/10/2016 11:16:32 PM | Computer Name = JoLaptop | Source = Application Error | ID = 1000 Description = Faulting application name: rundll32.exe_ResetEng.dll, version: 10.0.14393.0, time stamp: 0x57899977 Faulting module name: ntdll.dll, version: 10.0.14393.103, time stamp: 0x57b7e207 Exception code: 0xc0000409 Fault offset: 0x00000000000951ff Faulting process id: 0xa14 Faulting application start time: 0x01d20bdae47ae9ca Faulting application path: C:\WINDOWS\system32\rundll32.exe Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll Report Id: 2a0e1dc6-0e62-465f-88a2-55c52b370263 Faulting package full name: Faulting package-relative application ID: [ System Events ] Error - 9/10/2016 9:41:09 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10001 Description = Error - 9/10/2016 9:41:26 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10016 Description = Error - 9/10/2016 9:41:50 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10001 Description = Error - 9/10/2016 9:41:50 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10001 Description = Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10001 Description = Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10001 Description = Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10001 Description = Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10001 Description = Error - 9/10/2016 9:41:51 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10001 Description = Error - 9/10/2016 11:32:36 PM | Computer Name = JoLaptop | Source = DCOM | ID = 10016 Description = < End of report >
  6. momof3

    Hacked comp

    OTL logfile created on: 9/11/2016 9:26:56 AM - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jolene\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.11.14393.0) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 5.60 Gb Total Physical Memory | 3.17 Gb Available Physical Memory | 56.59% Memory free 7.22 Gb Paging File | 4.57 Gb Available in Paging File | 63.29% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 442.04 Gb Total Space | 388.58 Gb Free Space | 87.91% Space Free | Partition Type: NTFS Drive D: | 21.78 Gb Total Space | 2.16 Gb Free Space | 9.93% Space Free | Partition Type: NTFS Computer Name: JOLAPTOP | User Name: Jolene | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - File not found -- PRC - [2016/09/11 09:24:29 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jolene\Downloads\OTL.scr PRC - [2016/09/10 09:38:38 | 000,633,024 | ---- | M] (Microsoft Corporation) -- C:\Users\Jolene\AppData\Local\Microsoft\OneDrive\OneDrive.exe PRC - [2016/07/29 22:01:01 | 000,288,920 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe PRC - [2016/03/10 14:07:30 | 001,136,608 | ---- | M] (Malwarebytes) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe PRC - [2016/03/10 14:07:28 | 001,514,464 | ---- | M] (Malwarebytes) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe PRC - [2016/03/10 14:07:20 | 009,926,112 | ---- | M] (Malwarebytes) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe PRC - [2015/08/21 22:09:14 | 000,344,064 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe PRC - [2013/03/04 16:28:40 | 000,239,176 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE PRC - [2013/03/04 16:28:36 | 001,277,000 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe PRC - [2013/03/04 16:28:24 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe PRC - [2013/02/25 13:39:26 | 001,045,304 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe PRC - [2013/02/01 17:00:28 | 001,039,160 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe PRC - [2012/11/15 17:49:48 | 002,468,496 | ---- | M] (Realsil Microelectronics Inc.) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe PRC - [2012/07/13 16:50:00 | 000,093,296 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe PRC - [2012/06/07 21:34:06 | 000,111,120 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe ========== Modules (No Company Name) ========== MOD - [2016/09/10 09:37:04 | 000,118,976 | ---- | M] () -- C:\Users\Jolene\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll MOD - [2016/09/09 08:25:28 | 001,383,616 | ---- | M] () -- C:\Users\Jolene\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll MOD - [2012/06/08 12:34:06 | 000,016,400 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll MOD - [2012/06/07 21:34:06 | 000,627,216 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll ========== Services (SafeList) ========== SRV:64bit: - [2016/09/07 04:13:33 | 000,804,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FrameServer.dll -- (FrameServer) SRV:64bit: - [2016/09/07 04:13:32 | 000,447,488 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:64bit: - [2016/09/07 04:13:23 | 002,264,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc) SRV:64bit: - [2016/09/07 04:13:23 | 001,231,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc) SRV:64bit: - [2016/09/07 04:13:14 | 000,770,048 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:64bit: - [2016/09/07 04:13:14 | 000,539,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc) SRV:64bit: - [2016/09/07 04:13:14 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager) SRV:64bit: - [2016/09/07 04:13:13 | 001,014,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager) SRV:64bit: - [2016/09/07 04:13:13 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost) SRV:64bit: - [2016/09/07 04:00:31 | 000,083,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\inetsrv\w3logsvc.dll -- (w3logsvc) SRV:64bit: - [2016/07/16 05:43:51 | 000,650,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo) SRV:64bit: - [2016/07/16 05:43:50 | 000,082,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:64bit: - [2016/07/16 05:43:47 | 000,560,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness) SRV:64bit: - [2016/07/16 05:43:47 | 000,436,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService) SRV:64bit: - [2016/07/16 05:43:18 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:64bit: - [2016/07/16 05:43:10 | 001,836,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc) SRV:64bit: - [2016/07/16 05:43:06 | 000,347,328 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc) SRV:64bit: - [2016/07/16 05:43:04 | 000,103,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV:64bit: - [2016/07/16 05:42:43 | 000,691,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM) SRV:64bit: - [2016/07/16 05:42:42 | 000,088,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:64bit: - [2016/07/16 05:42:39 | 000,285,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc) SRV:64bit: - [2016/07/16 05:42:39 | 000,161,792 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll -- (shpamsvc) SRV:64bit: - [2016/07/16 05:42:38 | 001,312,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService) SRV:64bit: - [2016/07/16 05:42:38 | 001,025,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc) SRV:64bit: - [2016/07/16 05:42:38 | 000,781,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc) SRV:64bit: - [2016/07/16 05:42:38 | 000,407,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc) SRV:64bit: - [2016/07/16 05:42:38 | 000,141,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\RMapi.dll -- (RmSvc) SRV:64bit: - [2016/07/16 05:42:38 | 000,057,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice) SRV:64bit: - [2016/07/16 05:42:38 | 000,055,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS) SRV:64bit: - [2016/07/16 05:42:37 | 000,718,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:64bit: - [2016/07/16 05:42:36 | 001,020,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager) SRV:64bit: - [2016/07/16 05:42:36 | 000,183,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dcpsvc.dll -- (DcpSvc) SRV:64bit: - [2016/07/16 05:42:28 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService) SRV:64bit: - [2016/07/16 05:42:27 | 001,980,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack) SRV:64bit: - [2016/07/16 05:42:27 | 000,827,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:64bit: - [2016/07/16 05:42:27 | 000,614,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FlightSettings.dll -- (wisvc) SRV:64bit: - [2016/07/16 05:42:27 | 000,265,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc) SRV:64bit: - [2016/07/16 05:42:27 | 000,096,768 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:64bit: - [2016/07/16 05:42:27 | 000,093,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service) SRV:64bit: - [2016/07/16 05:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (WpnUserService_32702) SRV:64bit: - [2016/07/16 05:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_32702) SRV:64bit: - [2016/07/16 05:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_32702) SRV:64bit: - [2016/07/16 05:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_32702) SRV:64bit: - [2016/07/16 05:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_32702) SRV:64bit: - [2016/07/16 05:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_32702) SRV:64bit: - [2016/07/16 05:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (CDPUserSvc_32702) SRV:64bit: - [2016/07/16 05:42:23 | 000,765,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar) SRV:64bit: - [2016/07/16 05:42:23 | 000,366,592 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc) SRV:64bit: - [2016/07/16 05:42:22 | 000,337,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:64bit: - [2016/07/16 05:42:20 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC) SRV:64bit: - [2016/07/16 05:42:19 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum) SRV:64bit: - [2016/07/16 05:42:16 | 000,287,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService) SRV:64bit: - [2016/07/16 05:42:16 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:64bit: - [2016/07/16 05:42:16 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:64bit: - [2016/07/16 05:42:13 | 000,590,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter) SRV:64bit: - [2016/07/16 05:42:12 | 000,519,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:64bit: - [2016/07/16 05:42:12 | 000,052,224 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService) SRV:64bit: - [2016/07/16 05:42:09 | 001,512,448 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc) SRV:64bit: - [2016/07/16 05:42:09 | 001,184,256 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc) SRV:64bit: - [2016/07/16 05:42:09 | 000,983,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc) SRV:64bit: - [2016/07/16 05:42:09 | 000,574,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc) SRV:64bit: - [2016/07/16 05:42:09 | 000,387,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:64bit: - [2016/07/16 05:42:09 | 000,358,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:64bit: - [2016/07/16 05:42:09 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService) SRV:64bit: - [2016/07/16 05:42:09 | 000,326,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc) SRV:64bit: - [2016/07/16 05:42:09 | 000,234,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService) SRV:64bit: - [2016/07/16 05:42:09 | 000,203,776 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc) SRV:64bit: - [2016/07/16 05:42:09 | 000,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc) SRV:64bit: - [2016/07/16 05:42:09 | 000,177,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBrokerSvc) SRV:64bit: - [2016/07/16 05:42:09 | 000,077,312 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker) SRV:64bit: - [2016/07/16 05:42:09 | 000,074,240 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\WpnUserService.dll -- (WpnUserService) SRV:64bit: - [2016/07/16 05:42:09 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc) SRV:64bit: - [2016/07/16 05:42:09 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker) SRV:64bit: - [2016/07/16 05:42:07 | 001,159,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave) SRV:64bit: - [2016/07/16 05:42:06 | 004,136,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository) SRV:64bit: - [2016/07/16 05:42:06 | 000,729,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC) SRV:64bit: - [2016/07/16 05:42:06 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter) SRV:64bit: - [2016/07/16 05:42:05 | 002,104,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:64bit: - [2016/07/16 05:42:05 | 000,409,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc) SRV:64bit: - [2016/07/16 05:42:05 | 000,337,408 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\cdpusersvc.dll -- (CDPUserSvc) SRV:64bit: - [2016/07/16 05:42:05 | 000,197,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:64bit: - [2016/07/16 05:42:05 | 000,152,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc) SRV:64bit: - [2016/07/16 05:42:05 | 000,140,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode) SRV:64bit: - [2016/07/16 05:42:05 | 000,095,232 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate) SRV:64bit: - [2016/07/16 05:42:04 | 000,067,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hvhostsvc.dll -- (HvHost) SRV:64bit: - [2016/07/16 05:42:02 | 000,349,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicvss) SRV:64bit: - [2016/07/16 05:42:02 | 000,349,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicrdv) SRV:64bit: - [2016/07/16 05:42:02 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession) SRV:64bit: - [2016/07/16 05:42:02 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:64bit: - [2016/07/16 05:42:02 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:64bit: - [2016/07/16 05:42:02 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:64bit: - [2016/07/16 05:42:02 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV:64bit: - [2016/07/16 05:42:02 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface) SRV:64bit: - [2016/07/16 05:41:50 | 003,318,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:64bit: - [2016/07/16 05:41:50 | 000,321,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv) SRV:64bit: - [2016/04/28 01:53:50 | 000,253,960 | ---- | M] (Synaptics Incorporated) [Auto | Running] -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe -- (SynTPEnhService) SRV:64bit: - [2015/10/21 03:14:46 | 000,255,472 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2015/08/21 22:09:14 | 000,344,064 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service) SRV:64bit: - [2013/03/04 16:28:40 | 000,239,176 | ---- | M] (Realtek Semiconductor) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE -- (RtkAudioService) SRV:64bit: - [2013/03/04 16:28:24 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters) SRV - [2016/09/07 04:13:13 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost) SRV - [2016/09/07 04:00:37 | 000,507,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS) SRV - [2016/09/07 04:00:28 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\w3logsvc.dll -- (w3logsvc) SRV - [2016/09/07 04:00:26 | 000,057,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc) SRV - [2016/07/16 05:43:02 | 000,298,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc) SRV - [2016/07/16 05:42:55 | 003,369,984 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository) SRV - [2016/07/16 05:42:55 | 000,968,704 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc) SRV - [2016/07/16 05:42:49 | 000,483,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar) SRV - [2016/07/16 05:41:50 | 003,318,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2016/03/10 14:07:30 | 001,136,608 | ---- | M] (Malwarebytes) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2016/03/10 14:07:28 | 001,514,464 | ---- | M] (Malwarebytes) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2013/02/01 17:00:28 | 001,039,160 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe -- (HPWMISVC) SRV - [2012/11/15 17:49:48 | 002,468,496 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R) SRV - [2012/09/27 12:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service) SRV - [2010/10/12 11:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService) ========== Driver Services (SafeList) ========== DRV:64bit: - [2016/09/11 09:06:42 | 000,192,216 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy) DRV:64bit: - [2016/09/07 04:13:32 | 000,108,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc) DRV:64bit: - [2016/09/07 04:13:23 | 000,062,816 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam) DRV:64bit: - [2016/09/07 04:13:14 | 000,073,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hvservice.sys -- (hvservice) DRV:64bit: - [2016/09/07 04:13:13 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme) DRV:64bit: - [2016/09/07 04:13:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid) DRV:64bit: - [2016/09/07 03:58:43 | 000,199,008 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof) DRV:64bit: - [2016/07/16 08:27:23 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt) DRV:64bit: - [2016/07/16 08:27:05 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2016/07/16 05:44:01 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV:64bit: - [2016/07/16 05:43:06 | 000,123,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv) DRV:64bit: - [2016/07/16 05:43:04 | 000,290,144 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter) DRV:64bit: - [2016/07/16 05:43:04 | 000,044,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot) DRV:64bit: - [2016/07/16 05:42:38 | 000,125,440 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu) DRV:64bit: - [2016/07/16 05:42:36 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV:64bit: - [2016/07/16 05:42:36 | 000,078,336 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp) DRV:64bit: - [2016/07/16 05:42:36 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\applockerfltr.sys -- (applockerfltr) DRV:64bit: - [2016/07/16 05:42:35 | 000,928,608 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1) DRV:64bit: - [2016/07/16 05:42:35 | 000,376,160 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS) DRV:64bit: - [2016/07/16 05:42:35 | 000,227,328 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache) DRV:64bit: - [2016/07/16 05:42:35 | 000,045,920 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iorate.sys -- (iorate) DRV:64bit: - [2016/07/16 05:42:28 | 000,107,032 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT) DRV:64bit: - [2016/07/16 05:42:28 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv) DRV:64bit: - [2016/07/16 05:42:27 | 000,263,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000) DRV:64bit: - [2016/07/16 05:42:27 | 000,201,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt) DRV:64bit: - [2016/07/16 05:42:27 | 000,151,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2) DRV:64bit: - [2016/07/16 05:42:27 | 000,108,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101) DRV:64bit: - [2016/07/16 05:42:27 | 000,095,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101) DRV:64bit: - [2016/07/16 05:42:27 | 000,079,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx) DRV:64bit: - [2016/07/16 05:42:27 | 000,078,336 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt) DRV:64bit: - [2016/07/16 05:42:27 | 000,074,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx) DRV:64bit: - [2016/07/16 05:42:27 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000) DRV:64bit: - [2016/07/16 05:42:27 | 000,053,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv) DRV:64bit: - [2016/07/16 05:42:27 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IndirectKmd.sys -- (IndirectKmd) DRV:64bit: - [2016/07/16 05:42:27 | 000,031,584 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2016/07/16 05:42:27 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf) DRV:64bit: - [2016/07/16 05:42:23 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist) DRV:64bit: - [2016/07/16 05:42:22 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS) DRV:64bit: - [2016/07/16 05:42:18 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass) DRV:64bit: - [2016/07/16 05:42:13 | 000,719,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi) DRV:64bit: - [2016/07/16 05:42:12 | 000,120,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\irda.sys -- (irda) DRV:64bit: - [2016/07/16 05:42:11 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus) DRV:64bit: - [2016/07/16 05:42:09 | 000,168,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101) DRV:64bit: - [2016/07/16 05:42:09 | 000,156,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS) DRV:64bit: - [2016/07/16 05:42:09 | 000,119,648 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcifs.sys -- (wcifs) DRV:64bit: - [2016/07/16 05:42:09 | 000,070,144 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\registry.sys -- (clreg) DRV:64bit: - [2016/07/16 05:42:09 | 000,066,560 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcnfs.sys -- (wcnfs) DRV:64bit: - [2016/07/16 05:42:03 | 000,210,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000) DRV:64bit: - [2016/07/16 05:42:03 | 000,126,816 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex) DRV:64bit: - [2016/07/16 05:42:03 | 000,090,624 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NetAdapterCx.sys -- (NetAdapterCx) DRV:64bit: - [2016/07/16 05:42:03 | 000,088,576 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt) DRV:64bit: - [2016/07/16 05:42:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (tsusbflt) DRV:64bit: - [2016/07/16 05:42:03 | 000,045,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx) DRV:64bit: - [2016/07/16 05:42:03 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf) DRV:64bit: - [2016/07/16 05:41:55 | 000,535,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3) DRV:64bit: - [2016/07/16 05:41:55 | 000,381,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI) DRV:64bit: - [2016/07/16 05:41:55 | 000,279,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2016/07/16 05:41:55 | 000,220,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM) DRV:64bit: - [2016/07/16 05:41:55 | 000,137,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys) DRV:64bit: - [2016/07/16 05:41:55 | 000,096,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea) DRV:64bit: - [2016/07/16 05:41:55 | 000,095,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor) DRV:64bit: - [2016/07/16 05:41:55 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi) DRV:64bit: - [2016/07/16 05:41:55 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea) DRV:64bit: - [2016/07/16 05:41:55 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys) DRV:64bit: - [2016/07/16 05:41:55 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn) DRV:64bit: - [2016/07/16 05:41:55 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy) DRV:64bit: - [2016/07/16 05:41:54 | 000,258,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip) DRV:64bit: - [2016/07/16 05:41:54 | 000,176,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C) DRV:64bit: - [2016/07/16 05:41:54 | 000,081,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c) DRV:64bit: - [2016/07/16 05:41:54 | 000,064,512 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2.sys -- (iaLPSS2i_GPIO2) DRV:64bit: - [2016/07/16 05:41:54 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c) DRV:64bit: - [2016/07/16 05:41:54 | 000,050,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32) DRV:64bit: - [2016/07/16 05:41:54 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt) DRV:64bit: - [2016/07/16 05:41:54 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter) DRV:64bit: - [2016/07/16 05:41:54 | 000,034,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2016/07/16 05:41:54 | 000,033,280 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iagpio.sys -- (iagpio) DRV:64bit: - [2016/07/16 05:41:54 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig) DRV:64bit: - [2016/07/16 05:41:54 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic) DRV:64bit: - [2016/07/16 05:41:53 | 002,104,160 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4vx64.sys -- (cht4vbd) DRV:64bit: - [2016/07/16 05:41:53 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX) DRV:64bit: - [2016/07/16 05:41:53 | 000,842,584 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus) DRV:64bit: - [2016/07/16 05:41:53 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV) DRV:64bit: - [2016/07/16 05:41:53 | 000,589,824 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64) DRV:64bit: - [2016/07/16 05:41:53 | 000,544,608 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport) DRV:64bit: - [2016/07/16 05:41:53 | 000,526,176 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus) DRV:64bit: - [2016/07/16 05:41:53 | 000,346,976 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4sx64.sys -- (cht4iscsi) DRV:64bit: - [2016/07/16 05:41:53 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID) DRV:64bit: - [2016/07/16 05:41:53 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2016/07/16 05:41:53 | 000,131,424 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci) DRV:64bit: - [2016/07/16 05:41:53 | 000,123,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\scmdisk0101.sys -- (scmdisk0101) DRV:64bit: - [2016/07/16 05:41:53 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg) DRV:64bit: - [2016/07/16 05:41:53 | 000,108,896 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr) DRV:64bit: - [2016/07/16 05:41:53 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware) DRV:64bit: - [2016/07/16 05:41:53 | 000,105,824 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i) DRV:64bit: - [2016/07/16 05:41:53 | 000,101,216 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i) DRV:64bit: - [2016/07/16 05:41:53 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\scmbus.sys -- (scmbus) DRV:64bit: - [2016/07/16 05:41:53 | 000,083,296 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2016/07/16 05:41:53 | 000,082,776 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS) DRV:64bit: - [2016/07/16 05:41:53 | 000,077,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor) DRV:64bit: - [2016/07/16 05:41:53 | 000,069,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:64bit: - [2016/07/16 05:41:53 | 000,064,864 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs) DRV:64bit: - [2016/07/16 05:41:53 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2016/07/16 05:41:53 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis) DRV:64bit: - [2016/07/16 05:41:53 | 000,061,792 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i) DRV:64bit: - [2016/07/16 05:41:53 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i) DRV:64bit: - [2016/07/16 05:41:53 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay) DRV:64bit: - [2016/07/16 05:41:53 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender) DRV:64bit: - [2016/07/16 05:41:53 | 000,032,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs) DRV:64bit: - [2016/07/16 05:41:53 | 000,032,096 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad) DRV:64bit: - [2016/07/16 05:41:53 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2016/07/16 05:41:53 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI) DRV:64bit: - [2016/07/16 05:41:53 | 000,026,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2016/07/16 05:41:53 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AcpiDev.sys -- (AcpiDev) DRV:64bit: - [2016/07/16 05:41:53 | 000,016,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volume.sys -- (volume) DRV:64bit: - [2016/07/16 05:41:53 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime) DRV:64bit: - [2016/07/16 05:41:53 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr) DRV:64bit: - [2016/07/16 05:41:53 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2) DRV:64bit: - [2016/07/16 05:41:53 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn.sys -- (bcmfn) DRV:64bit: - [2016/07/16 05:41:52 | 003,418,976 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2016/07/16 05:41:52 | 000,533,856 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2016/07/16 05:41:52 | 000,048,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep) DRV:64bit: - [2016/07/16 05:41:52 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO) DRV:64bit: - [2016/07/16 05:41:50 | 004,233,728 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athw8x.sys -- (athr) DRV:64bit: - [2016/07/16 05:41:50 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV:64bit: - [2016/07/16 05:41:50 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C) DRV:64bit: - [2016/07/16 05:41:50 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci) DRV:64bit: - [2016/07/16 05:41:50 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum) DRV:64bit: - [2016/07/16 05:41:50 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc) DRV:64bit: - [2016/07/16 05:41:50 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV:64bit: - [2016/07/16 05:41:50 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys -- (CompositeBus) DRV:64bit: - [2016/07/16 05:41:50 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2016/07/16 05:41:50 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid) DRV:64bit: - [2016/07/16 05:41:50 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd) DRV:64bit: - [2016/07/16 05:41:50 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter) DRV:64bit: - [2016/07/16 05:41:50 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgid.sys -- (vmgid) DRV:64bit: - [2016/04/28 01:53:48 | 000,622,784 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP) DRV:64bit: - [2016/03/10 14:09:10 | 000,065,408 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl) DRV:64bit: - [2016/03/10 14:08:54 | 000,027,008 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector) DRV:64bit: - [2015/10/21 03:14:48 | 021,648,880 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2015/10/21 03:14:46 | 000,674,288 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2015/06/05 02:12:54 | 000,310,528 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsP2Stor.sys -- (RSP2STOR) DRV:64bit: - [2015/05/28 07:00:44 | 000,102,912 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdWT6.sys -- (AtiHDAudioService) DRV:64bit: - [2013/03/08 18:58:18 | 000,033,008 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI) DRV:64bit: - [2013/03/08 18:58:16 | 000,028,400 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Smb_driver_AMDASF.sys -- (SmbDrv) DRV:64bit: - [2012/11/30 01:31:02 | 000,026,280 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata) DRV:64bit: - [2012/11/30 01:31:00 | 000,080,552 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata) DRV:64bit: - [2012/08/31 10:40:24 | 000,020,800 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WirelessButtonDriver64.sys -- (WirelessButtonDriver) DRV:64bit: - [2012/08/28 07:27:24 | 000,058,536 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter) DRV:64bit: - [2012/06/25 11:24:50 | 000,092,536 | ---- | M] (CyberLink) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\CLVirtualDrive.sys -- (CLVirtualDrive) DRV - [2016/07/23 15:55:05 | 000,497,392 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl) DRV - [2016/07/16 05:41:50 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys -- (CompositeBus) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1 IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT13/1 IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS IE:64bit: - HKLM\..\SearchScopes\{B96863F5-3A7F-4F88-A08A-6C3A3D8811F1}: "URL" = http://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms} IE:64bit: - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm IE - HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm IE - HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1 IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/HPNOT13/1 IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1 IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/HPNOT13/1 IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2220262111-1223720106-2740516049-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll () ========== Chrome ========== CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.2.5.169_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeojlpepoljdpaoiplnlhcfkoigijimc\12.41.9.65484_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdobakplmmicnnhioedbifobmpoaglac\1.4.0_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidlffpkjchmiflngkkakcmbjmehkdbg\12.41.9.53407_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_2\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkpllchojjkbgephbbeacaahecgfpga\2.2.104_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmgkbcihahpocjmclehpjejmgjmijcib\12.41.10.17407_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd\2.6.65.1_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhopeeieecchbhooipmmgjkfajbpkl\12.41.10.15530_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\ CHR - Extension: No name found = C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.15_0\ O1 HOSTS File: ([2012/07/25 23:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard) O3 - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found. O4:64bit: - HKLM..\Run: [WindowsDefender] C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation) O4 - HKLM..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.) O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-2220262111-1223720106-2740516049-1002..\Run: [OneDrive] C:\Users\Jolene\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard) O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{eb2df0db-e703-466f-9b6c-1cd312ad78d0}: DhcpNameServer = 192.168.0.1 O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation) O18:64bit: - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation) O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation) O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O30:64bit: - LSA: Security Packages - (livessp) - File not found O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2016/09/10 19:46:54 | 000,192,216 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys [2016/09/10 19:46:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware [2016/09/10 19:45:48 | 000,140,672 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys [2016/09/10 19:45:48 | 000,065,408 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mwac.sys [2016/09/10 19:45:48 | 000,027,008 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys [2016/09/10 19:45:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware [2016/09/10 19:45:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2016/09/10 19:45:01 | 000,000,000 | ---D | C] -- C:\Users\Jolene\AppData\Local\Programs [2016/09/10 11:30:28 | 000,000,000 | ---D | C] -- C:\AdwCleaner [2016/09/10 09:43:17 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp [2016/09/09 08:24:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive [2016/09/09 08:20:48 | 000,000,000 | ---D | C] -- C:\Users\Jolene\AppData\Local\ConnectedDevicesPlatform [2016/09/07 04:28:52 | 000,000,000 | -HSD | C] -- C:\Recovery [2016/09/07 04:28:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther [2016/09/07 04:17:18 | 000,000,000 | ---D | C] -- C:\Windows.old [2016/09/07 04:13:44 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GamePanel.exe [2016/09/07 04:13:44 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfksproxy.dll [2016/09/07 04:13:44 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudBackupSettings.dll [2016/09/07 04:13:44 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BcastDVRHelper.dll [2016/09/07 04:13:44 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\encapi.dll [2016/09/07 04:13:34 | 006,285,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll [2016/09/07 04:13:34 | 004,612,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll [2016/09/07 04:13:34 | 004,130,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll [2016/09/07 04:13:34 | 003,893,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll [2016/09/07 04:13:34 | 001,847,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll [2016/09/07 04:13:34 | 001,557,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll [2016/09/07 04:13:34 | 001,453,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll [2016/09/07 04:13:34 | 001,403,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Editing.dll [2016/09/07 04:13:34 | 001,360,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll [2016/09/07 04:13:34 | 001,343,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll [2016/09/07 04:13:34 | 001,255,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AzureSettingSyncProvider.dll [2016/09/07 04:13:34 | 001,220,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll [2016/09/07 04:13:34 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Audio.dll [2016/09/07 04:13:34 | 001,077,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Editing.dll [2016/09/07 04:13:34 | 001,071,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll [2016/09/07 04:13:34 | 001,066,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll [2016/09/07 04:13:34 | 000,980,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll [2016/09/07 04:13:34 | 000,955,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll [2016/09/07 04:13:34 | 000,640,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MCRecvSrc.dll [2016/09/07 04:13:34 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe [2016/09/07 04:13:34 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudBackupSettings.dll [2016/09/07 04:13:34 | 000,244,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll [2016/09/07 04:13:34 | 000,121,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll [2016/09/07 04:13:34 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncPolicy.dll [2016/09/07 04:13:33 | 001,908,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AzureSettingSyncProvider.dll [2016/09/07 04:13:33 | 000,804,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FrameServer.dll [2016/09/07 04:13:33 | 000,726,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll [2016/09/07 04:13:33 | 000,590,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll [2016/09/07 04:13:33 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FSClient.dll [2016/09/07 04:13:33 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsensorgroup.dll [2016/09/07 04:13:33 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll [2016/09/07 04:13:33 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FSClient.dll [2016/09/07 04:13:33 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsensorgroup.dll [2016/09/07 04:13:33 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncPolicy.dll [2016/09/07 04:13:33 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll [2016/09/07 04:13:32 | 013,433,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll [2016/09/07 04:13:32 | 012,345,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll [2016/09/07 04:13:32 | 009,260,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmploc.DLL [2016/09/07 04:13:32 | 009,260,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmploc.DLL [2016/09/07 04:13:32 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll [2016/09/07 04:13:32 | 000,447,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\das.dll [2016/09/07 04:13:32 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll [2016/09/07 04:13:32 | 000,396,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll [2016/09/07 04:13:32 | 000,313,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanapi.dll [2016/09/07 04:13:32 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifiprofilessettinghandler.dll [2016/09/07 04:13:32 | 000,108,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys [2016/09/07 04:13:32 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpninprc.dll [2016/09/07 04:13:32 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dasHost.exe [2016/09/07 04:13:32 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceassociation.dll [2016/09/07 04:13:32 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll [2016/09/07 04:13:32 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfdprov.dll [2016/09/07 04:13:32 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiConfigSP.dll [2016/09/07 04:13:32 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansvcpal.dll [2016/09/07 04:13:32 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll [2016/09/07 04:13:32 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanhlp.dll [2016/09/07 04:13:32 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spwmp.dll [2016/09/07 04:13:32 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spwmp.dll [2016/09/07 04:13:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdxm.ocx [2016/09/07 04:13:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxmasf.dll [2016/09/07 04:13:32 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msdxm.ocx [2016/09/07 04:13:32 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dxmasf.dll [2016/09/07 04:13:31 | 022,571,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll [2016/09/07 04:13:31 | 019,423,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll [2016/09/07 04:13:31 | 008,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll [2016/09/07 04:13:31 | 006,044,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll [2016/09/07 04:13:31 | 002,095,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl [2016/09/07 04:13:31 | 002,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl [2016/09/07 04:13:31 | 001,883,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll [2016/09/07 04:13:31 | 001,176,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll [2016/09/07 04:13:31 | 001,081,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll [2016/09/07 04:13:31 | 000,822,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakradiag.dll [2016/09/07 04:13:31 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll [2016/09/07 04:13:31 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredProvDataModel.dll [2016/09/07 04:13:31 | 000,261,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\indexeddbserver.dll [2016/09/07 04:13:31 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe [2016/09/07 04:13:31 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\indexeddbserver.dll [2016/09/07 04:13:31 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakrathunk.dll [2016/09/07 04:13:31 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakrathunk.dll [2016/09/07 04:13:31 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll [2016/09/07 04:13:31 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll [2016/09/07 04:13:31 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll [2016/09/07 04:13:31 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll [2016/09/07 04:13:30 | 007,624,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll [2016/09/07 04:13:30 | 005,398,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aclui.dll [2016/09/07 04:13:30 | 003,299,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstsc.exe [2016/09/07 04:13:30 | 002,510,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll [2016/09/07 04:13:30 | 001,656,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll [2016/09/07 04:13:30 | 001,418,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll [2016/09/07 04:13:30 | 001,316,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_fs.dll [2016/09/07 04:13:30 | 001,106,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_health.dll [2016/09/07 04:13:30 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\clusapi.dll [2016/09/07 04:13:30 | 000,466,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppcext.dll [2016/09/07 04:13:30 | 000,408,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsmf.dll [2016/09/07 04:13:30 | 000,321,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppHost.exe [2016/09/07 04:13:30 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_WorkAccess.dll [2016/09/07 04:13:30 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tcpipcfg.dll [2016/09/07 04:13:30 | 000,151,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll [2016/09/07 04:13:30 | 000,141,824 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\WINDOWS\SysWow64\DscCoreConfProv.dll [2016/09/07 04:13:30 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppc.dll [2016/09/07 04:13:30 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ConfigureExpandedStorage.dll [2016/09/07 04:13:30 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netiougc.exe [2016/09/07 04:13:30 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\slcext.dll [2016/09/07 04:13:23 | 009,128,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll [2016/09/07 04:13:23 | 007,814,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe [2016/09/07 04:13:23 | 005,511,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aclui.dll [2016/09/07 04:13:23 | 004,749,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll [2016/09/07 04:13:23 | 002,264,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll [2016/09/07 04:13:23 | 001,906,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_fs.dll [2016/09/07 04:13:23 | 001,812,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ResetEngine.dll [2016/09/07 04:13:23 | 001,690,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.onecore.dll [2016/09/07 04:13:23 | 001,547,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_health.dll [2016/09/07 04:13:23 | 001,469,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll [2016/09/07 04:13:23 | 001,377,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipUp.exe [2016/09/07 04:13:23 | 001,349,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi [2016/09/07 04:13:23 | 001,231,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll [2016/09/07 04:13:23 | 001,163,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe [2016/09/07 04:13:23 | 001,082,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll [2016/09/07 04:13:23 | 001,066,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pidgenx.dll [2016/09/07 04:13:23 | 001,046,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi [2016/09/07 04:13:23 | 000,956,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.desktop.dll [2016/09/07 04:13:23 | 000,939,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pidgenx.dll [2016/09/07 04:13:23 | 000,909,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll [2016/09/07 04:13:23 | 000,885,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe [2016/09/07 04:13:23 | 000,775,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GamePanel.exe [2016/09/07 04:13:23 | 000,665,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GenValObj.exe [2016/09/07 04:13:23 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uReFS.dll [2016/09/07 04:13:23 | 000,605,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe [2016/09/07 04:13:23 | 000,538,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcext.dll [2016/09/07 04:13:23 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DataSenseHandlers.dll [2016/09/07 04:13:23 | 000,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredProvDataModel.dll [2016/09/07 04:13:23 | 000,381,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppHost.exe [2016/09/07 04:13:23 | 000,354,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemreset.exe [2016/09/07 04:13:23 | 000,349,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll [2016/09/07 04:13:23 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\domgmt.dll [2016/09/07 04:13:23 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll [2016/09/07 04:13:23 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConsoleLogon.dll [2016/09/07 04:13:23 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll [2016/09/07 04:13:23 | 000,234,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcpipcfg.dll [2016/09/07 04:13:23 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\C_G18030.DLL [2016/09/07 04:13:23 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll [2016/09/07 04:13:23 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXApplicabilityBlob.dll [2016/09/07 04:13:23 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll [2016/09/07 04:13:23 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppc.dll [2016/09/07 04:13:23 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slc.dll [2016/09/07 04:13:23 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll [2016/09/07 04:13:23 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll [2016/09/07 04:13:23 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll [2016/09/07 04:13:23 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll [2016/09/07 04:13:23 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll [2016/09/07 04:13:23 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe [2016/09/07 04:13:23 | 000,062,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys [2016/09/07 04:13:23 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll [2016/09/07 04:13:23 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageUsage.dll [2016/09/07 04:13:23 | 000,041,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysResetErr.exe [2016/09/07 04:13:23 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netiougc.exe [2016/09/07 04:13:23 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll [2016/09/07 04:13:23 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slcext.dll [2016/09/07 04:13:23 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\C_IS2022.DLL [2016/09/07 04:13:23 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\c_GSM7.DLL [2016/09/07 04:13:23 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ResetEngine.exe [2016/09/07 04:13:22 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DscCore.dll [2016/09/07 04:13:22 | 000,204,288 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\WINDOWS\SysNative\DscCoreConfProv.dll [2016/09/07 04:13:14 | 003,617,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys [2016/09/07 04:13:14 | 001,859,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll [2016/09/07 04:13:14 | 001,694,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll [2016/09/07 04:13:14 | 001,643,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll [2016/09/07 04:13:14 | 001,430,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll [2016/09/07 04:13:14 | 001,279,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll [2016/09/07 04:13:14 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll [2016/09/07 04:13:14 | 001,099,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvix64.exe [2016/09/07 04:13:14 | 000,987,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvax64.exe [2016/09/07 04:13:14 | 000,942,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.efi [2016/09/07 04:13:14 | 000,936,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MCRecvSrc.dll [2016/09/07 04:13:14 | 000,857,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe [2016/09/07 04:13:14 | 000,852,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll [2016/09/07 04:13:14 | 000,807,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.exe [2016/09/07 04:13:14 | 000,782,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe [2016/09/07 04:13:14 | 000,770,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll [2016/09/07 04:13:14 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll [2016/09/07 04:13:14 | 000,595,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll [2016/09/07 04:13:14 | 000,587,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll [2016/09/07 04:13:14 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.UXRes.dll [2016/09/07 04:13:14 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.UXRes.dll [2016/09/07 04:13:14 | 000,554,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll [2016/09/07 04:13:14 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocore.dll [2016/09/07 04:13:14 | 000,529,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll [2016/09/07 04:13:14 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll [2016/09/07 04:13:14 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Bluetooth.dll [2016/09/07 04:13:14 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhext.dll [2016/09/07 04:13:14 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll [2016/09/07 04:13:14 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgentUserBroker.exe [2016/09/07 04:13:14 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll [2016/09/07 04:13:14 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinBioDataModel.dll [2016/09/07 04:13:14 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafpos.dll [2016/09/07 04:13:14 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll [2016/09/07 04:13:14 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgentUserBroker.exe [2016/09/07 04:13:14 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe [2016/09/07 04:13:14 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe [2016/09/07 04:13:14 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe [2016/09/07 04:13:14 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CastLaunch.dll [2016/09/07 04:13:14 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\updatepolicy.dll [2016/09/07 04:13:14 | 000,073,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hvservice.sys [2016/09/07 04:13:14 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinBioDataModelOOBE.exe [2016/09/07 04:13:14 | 000,050,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CompatTelRunner.exe [2016/09/07 04:13:14 | 000,044,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe [2016/09/07 04:13:14 | 000,036,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfpmp.exe [2016/09/07 04:13:14 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll [2016/09/07 04:13:14 | 000,026,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe [2016/09/07 04:13:14 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerSvc.dll [2016/09/07 04:13:14 | 000,020,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kdhvcom.dll [2016/09/07 04:13:13 | 017,187,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll [2016/09/07 04:13:13 | 013,867,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll [2016/09/07 04:13:13 | 007,219,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll [2016/09/07 04:13:13 | 005,722,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll [2016/09/07 04:13:13 | 003,245,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll [2016/09/07 04:13:13 | 003,116,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSAJApi.dll [2016/09/07 04:13:13 | 003,105,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstsc.exe [2016/09/07 04:13:13 | 002,999,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys [2016/09/07 04:13:13 | 002,913,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll [2016/09/07 04:13:13 | 002,846,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi.dll [2016/09/07 04:13:13 | 002,711,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll [2016/09/07 04:13:13 | 002,422,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSAJApi.dll [2016/09/07 04:13:13 | 002,289,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll [2016/09/07 04:13:13 | 002,166,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll [2016/09/07 04:13:13 | 002,143,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi.dll [2016/09/07 04:13:13 | 001,992,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll [2016/09/07 04:13:13 | 001,631,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll [2016/09/07 04:13:13 | 001,631,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll [2016/09/07 04:13:13 | 001,508,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys [2016/09/07 04:13:13 | 001,491,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll [2016/09/07 04:13:13 | 001,461,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll [2016/09/07 04:13:13 | 001,456,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll [2016/09/07 04:13:13 | 001,267,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll [2016/09/07 04:13:13 | 001,062,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll [2016/09/07 04:13:13 | 001,014,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll [2016/09/07 04:13:13 | 001,006,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3D12.dll [2016/09/07 04:13:13 | 000,884,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll [2016/09/07 04:13:13 | 000,860,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll [2016/09/07 04:13:13 | 000,846,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll [2016/09/07 04:13:13 | 000,806,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3D12.dll [2016/09/07 04:13:13 | 000,715,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\clusapi.dll [2016/09/07 04:13:13 | 000,681,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ClipSp.sys [2016/09/07 04:13:13 | 000,658,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys [2016/09/07 04:13:13 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.InkControls.dll [2016/09/07 04:13:13 | 000,584,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe [2016/09/07 04:13:13 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\uReFS.dll [2016/09/07 04:13:13 | 000,526,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OneDriveSettingSyncProvider.dll [2016/09/07 04:13:13 | 000,509,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncHost.exe [2016/09/07 04:13:13 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.InkControls.dll [2016/09/07 04:13:13 | 000,431,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpAXHolder.dll [2016/09/07 04:13:13 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OneDriveSettingSyncProvider.dll [2016/09/07 04:13:13 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\facecredentialprovider.dll [2016/09/07 04:13:13 | 000,402,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys [2016/09/07 04:13:13 | 000,389,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wevtapi.dll [2016/09/07 04:13:13 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll [2016/09/07 04:13:13 | 000,361,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll [2016/09/07 04:13:13 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\container.dll [2016/09/07 04:13:13 | 000,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wevtapi.dll [2016/09/07 04:13:13 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll [2016/09/07 04:13:13 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe [2016/09/07 04:13:13 | 000,237,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinesam.dll [2016/09/07 04:13:13 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll [2016/09/07 04:13:13 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\container.dll [2016/09/07 04:13:13 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\C_G18030.DLL [2016/09/07 04:13:13 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinesam.dll [2016/09/07 04:13:13 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipboardServer.dll [2016/09/07 04:13:13 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfksproxy.dll [2016/09/07 04:13:13 | 000,178,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostUser.dll [2016/09/07 04:13:13 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ClipboardServer.dll [2016/09/07 04:13:13 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys [2016/09/07 04:13:13 | 000,136,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudExperienceHostUser.dll [2016/09/07 04:13:13 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll [2016/09/07 04:13:13 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll [2016/09/07 04:13:13 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll [2016/09/07 04:13:13 | 000,077,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys [2016/09/07 04:13:13 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\updatepolicy.dll [2016/09/07 04:13:13 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys [2016/09/07 04:13:13 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidparse.sys [2016/09/07 04:13:13 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceassociation.dll [2016/09/07 04:13:13 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\delegatorprovider.dll [2016/09/07 04:13:13 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi_passthru.dll [2016/09/07 04:13:13 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\smphost.dll [2016/09/07 04:13:13 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\encapi.dll [2016/09/07 04:13:13 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\smphost.dll [2016/09/07 04:13:13 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\delegatorprovider.dll [2016/09/07 04:13:13 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi_passthru.dll [2016/09/07 04:13:13 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\C_IS2022.DLL [2016/09/07 04:13:13 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\c_GSM7.DLL [2016/09/07 04:05:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\Microsoft [2016/09/07 04:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2016/09/07 04:00:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies [2016/09/07 04:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2016/09/07 04:00:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild [2016/09/07 04:00:49 | 000,000,000 | ---D | C] -- C:\inetpub [2016/09/07 03:59:25 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll [2016/09/07 03:59:25 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll [2016/09/07 03:59:25 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe [2016/09/07 03:59:19 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe [2016/09/07 03:59:18 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll [2016/09/07 03:59:17 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll [2016/09/07 03:58:42 | 000,199,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wof.sys [2016/09/07 03:10:08 | 000,000,000 | ---D | C] -- C:\ProgramData\USOShared [2016/09/07 03:09:50 | 000,000,000 | -HSD | C] -- C:\ProgramData\Templates [2016/09/07 03:09:50 | 000,000,000 | -HSD | C] -- C:\ProgramData\Start Menu [2016/09/07 03:09:50 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents [2016/09/07 03:09:50 | 000,000,000 | -HSD | C] -- C:\ProgramData\Desktop [2016/09/07 03:09:50 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data [2016/09/07 02:40:25 | 000,000,000 | --SD | C] -- C:\Users\Jolene\AppData\Roaming\Microsoft [2016/09/07 02:40:25 | 000,000,000 | R--D | C] -- C:\Users\Jolene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell [2016/09/07 02:40:25 | 000,000,000 | R--D | C] -- C:\Users\Jolene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2016/09/07 02:40:25 | 000,000,000 | R--D | C] -- C:\Users\Jolene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2016/09/07 02:40:25 | 000,000,000 | R--D | C] -- C:\Users\Jolene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\AppData\Local\Temporary Internet Files [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\Templates [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\Start Menu [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\SendTo [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\Recent [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\PrintHood [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\NetHood [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\Documents\My Videos [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\Documents\My Pictures [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\Documents\My Music [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\My Documents [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\Local Settings [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\AppData\Local\History [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\Cookies [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\Application Data [2016/09/07 02:40:25 | 000,000,000 | -HSD | C] -- C:\Users\Jolene\AppData\Local\Application Data [2016/09/07 02:40:25 | 000,000,000 | -H-D | C] -- C:\Users\Jolene\AppData [2016/09/07 02:40:25 | 000,000,000 | ---D | C] -- C:\Users\Jolene\AppData\Local\Temp [2016/09/07 02:40:25 | 000,000,000 | ---D | C] -- C:\Users\Jolene\AppData\Local\Microsoft [2016/09/07 02:40:25 | 000,000,000 | ---D | C] -- C:\Users\Jolene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2016/09/07 02:35:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center [2016/09/07 02:35:21 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD [2016/09/07 02:35:19 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2016/09/07 02:34:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies [2016/09/07 02:34:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2016/09/07 02:34:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\sda [2016/09/07 02:33:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SRSLabs [2016/09/07 02:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2016/09/07 02:33:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM [2016/09/07 02:33:35 | 002,716,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintConfig.dll [2016/09/07 02:33:12 | 000,000,000 | ---D | C] -- C:\Program Files\AMD [2016/09/07 02:32:21 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics [2016/09/07 02:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2016/09/07 02:30:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SleepStudy [2016/09/07 02:30:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServiceProfiles [2016/08/29 06:24:43 | 000,000,000 | ---D | C] -- C:\Users\Jolene\AppData\Roaming\Skype [1 C:\Users\Jolene\Desktop\*.tmp files -> C:\Users\Jolene\Desktop\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2016/09/11 09:06:42 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys [2016/09/11 09:05:57 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2016/09/10 19:46:27 | 001,013,994 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2016/09/10 19:46:27 | 000,840,646 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat [2016/09/10 19:46:27 | 000,174,630 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat [2016/09/10 19:46:12 | 000,001,182 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2016/09/10 19:39:38 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2016/09/10 19:39:35 | 2403,442,688 | -HS- | M] () -- C:\hiberfil.sys [2016/09/07 04:13:44 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GamePanel.exe [2016/09/07 04:13:44 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfksproxy.dll [2016/09/07 04:13:44 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudBackupSettings.dll [2016/09/07 04:13:44 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BcastDVRHelper.dll [2016/09/07 04:13:44 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\encapi.dll [2016/09/07 04:13:34 | 006,285,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll [2016/09/07 04:13:34 | 004,612,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll [2016/09/07 04:13:34 | 004,130,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll [2016/09/07 04:13:34 | 003,893,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll [2016/09/07 04:13:34 | 001,847,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll [2016/09/07 04:13:34 | 001,557,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll [2016/09/07 04:13:34 | 001,453,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll [2016/09/07 04:13:34 | 001,403,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Editing.dll [2016/09/07 04:13:34 | 001,360,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll [2016/09/07 04:13:34 | 001,343,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll [2016/09/07 04:13:34 | 001,255,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AzureSettingSyncProvider.dll [2016/09/07 04:13:34 | 001,220,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll [2016/09/07 04:13:34 | 001,217,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Audio.dll [2016/09/07 04:13:34 | 001,077,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Editing.dll [2016/09/07 04:13:34 | 001,071,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll [2016/09/07 04:13:34 | 001,066,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll [2016/09/07 04:13:34 | 000,980,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll [2016/09/07 04:13:34 | 000,955,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll [2016/09/07 04:13:34 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MCRecvSrc.dll [2016/09/07 04:13:34 | 000,491,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe [2016/09/07 04:13:34 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudBackupSettings.dll [2016/09/07 04:13:34 | 000,244,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll [2016/09/07 04:13:34 | 000,121,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll [2016/09/07 04:13:34 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncPolicy.dll [2016/09/07 04:13:33 | 001,908,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AzureSettingSyncProvider.dll [2016/09/07 04:13:33 | 000,804,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FrameServer.dll [2016/09/07 04:13:33 | 000,726,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll [2016/09/07 04:13:33 | 000,590,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll [2016/09/07 04:13:33 | 000,314,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FSClient.dll [2016/09/07 04:13:33 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsensorgroup.dll [2016/09/07 04:13:33 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll [2016/09/07 04:13:33 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FSClient.dll [2016/09/07 04:13:33 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsensorgroup.dll [2016/09/07 04:13:33 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncPolicy.dll [2016/09/07 04:13:33 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll [2016/09/07 04:13:32 | 013,433,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll [2016/09/07 04:13:32 | 012,345,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll [2016/09/07 04:13:32 | 009,260,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmploc.DLL [2016/09/07 04:13:32 | 009,260,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmploc.DLL [2016/09/07 04:13:32 | 000,462,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll [2016/09/07 04:13:32 | 000,447,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\das.dll [2016/09/07 04:13:32 | 000,412,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll [2016/09/07 04:13:32 | 000,396,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll [2016/09/07 04:13:32 | 000,313,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanapi.dll [2016/09/07 04:13:32 | 000,298,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifiprofilessettinghandler.dll [2016/09/07 04:13:32 | 000,108,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys [2016/09/07 04:13:32 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpninprc.dll [2016/09/07 04:13:32 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dasHost.exe [2016/09/07 04:13:32 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceassociation.dll [2016/09/07 04:13:32 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll [2016/09/07 04:13:32 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfdprov.dll [2016/09/07 04:13:32 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiConfigSP.dll [2016/09/07 04:13:32 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansvcpal.dll [2016/09/07 04:13:32 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll [2016/09/07 04:13:32 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanhlp.dll [2016/09/07 04:13:32 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spwmp.dll [2016/09/07 04:13:32 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spwmp.dll [2016/09/07 04:13:32 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdxm.ocx [2016/09/07 04:13:32 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxmasf.dll [2016/09/07 04:13:32 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msdxm.ocx [2016/09/07 04:13:32 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dxmasf.dll [2016/09/07 04:13:31 | 022,571,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll [2016/09/07 04:13:31 | 019,423,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll [2016/09/07 04:13:31 | 008,124,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll [2016/09/07 04:13:31 | 006,044,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll [2016/09/07 04:13:31 | 002,095,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl [2016/09/07 04:13:31 | 002,026,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl [2016/09/07 04:13:31 | 001,883,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll [2016/09/07 04:13:31 | 001,176,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll [2016/09/07 04:13:31 | 001,081,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll [2016/09/07 04:13:31 | 000,822,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakradiag.dll [2016/09/07 04:13:31 | 000,758,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll [2016/09/07 04:13:31 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredProvDataModel.dll [2016/09/07 04:13:31 | 000,261,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\indexeddbserver.dll [2016/09/07 04:13:31 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe [2016/09/07 04:13:31 | 000,198,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\indexeddbserver.dll [2016/09/07 04:13:31 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakrathunk.dll [2016/09/07 04:13:31 | 000,121,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakrathunk.dll [2016/09/07 04:13:31 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll [2016/09/07 04:13:31 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll [2016/09/07 04:13:31 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll [2016/09/07 04:13:31 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll [2016/09/07 04:13:30 | 007,624,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll [2016/09/07 04:13:30 | 005,398,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aclui.dll [2016/09/07 04:13:30 | 003,299,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstsc.exe [2016/09/07 04:13:30 | 002,510,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll [2016/09/07 04:13:30 | 001,656,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll [2016/09/07 04:13:30 | 001,418,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll [2016/09/07 04:13:30 | 001,316,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_fs.dll [2016/09/07 04:13:30 | 001,106,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsp_health.dll [2016/09/07 04:13:30 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\clusapi.dll [2016/09/07 04:13:30 | 000,466,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppcext.dll [2016/09/07 04:13:30 | 000,408,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsmf.dll [2016/09/07 04:13:30 | 000,321,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppHost.exe [2016/09/07 04:13:30 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_WorkAccess.dll [2016/09/07 04:13:30 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tcpipcfg.dll [2016/09/07 04:13:30 | 000,151,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll [2016/09/07 04:13:30 | 000,141,824 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\WINDOWS\SysWow64\DscCoreConfProv.dll [2016/09/07 04:13:30 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppc.dll [2016/09/07 04:13:30 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ConfigureExpandedStorage.dll [2016/09/07 04:13:30 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netiougc.exe [2016/09/07 04:13:30 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\slcext.dll [2016/09/07 04:13:23 | 009,128,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll [2016/09/07 04:13:23 | 007,814,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe [2016/09/07 04:13:23 | 005,511,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aclui.dll [2016/09/07 04:13:23 | 004,749,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll [2016/09/07 04:13:23 | 002,264,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll [2016/09/07 04:13:23 | 001,906,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_fs.dll [2016/09/07 04:13:23 | 001,812,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ResetEngine.dll [2016/09/07 04:13:23 | 001,690,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.onecore.dll [2016/09/07 04:13:23 | 001,547,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsp_health.dll [2016/09/07 04:13:23 | 001,469,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll [2016/09/07 04:13:23 | 001,377,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipUp.exe [2016/09/07 04:13:23 | 001,349,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi [2016/09/07 04:13:23 | 001,231,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll [2016/09/07 04:13:23 | 001,163,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe [2016/09/07 04:13:23 | 001,082,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll [2016/09/07 04:13:23 | 001,066,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pidgenx.dll [2016/09/07 04:13:23 | 001,046,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi [2016/09/07 04:13:23 | 000,956,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.desktop.dll [2016/09/07 04:13:23 | 000,939,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pidgenx.dll [2016/09/07 04:13:23 | 000,909,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll [2016/09/07 04:13:23 | 000,885,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe [2016/09/07 04:13:23 | 000,775,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GamePanel.exe [2016/09/07 04:13:23 | 000,665,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GenValObj.exe [2016/09/07 04:13:23 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uReFS.dll [2016/09/07 04:13:23 | 000,605,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe [2016/09/07 04:13:23 | 000,538,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcext.dll [2016/09/07 04:13:23 | 000,495,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DataSenseHandlers.dll [2016/09/07 04:13:23 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredProvDataModel.dll [2016/09/07 04:13:23 | 000,381,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppHost.exe [2016/09/07 04:13:23 | 000,354,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemreset.exe [2016/09/07 04:13:23 | 000,349,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll [2016/09/07 04:13:23 | 000,323,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\domgmt.dll [2016/09/07 04:13:23 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll [2016/09/07 04:13:23 | 000,266,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConsoleLogon.dll [2016/09/07 04:13:23 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll [2016/09/07 04:13:23 | 000,234,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcpipcfg.dll [2016/09/07 04:13:23 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\C_G18030.DLL [2016/09/07 04:13:23 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll [2016/09/07 04:13:23 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXApplicabilityBlob.dll [2016/09/07 04:13:23 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll [2016/09/07 04:13:23 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppc.dll [2016/09/07 04:13:23 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slc.dll [2016/09/07 04:13:23 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll [2016/09/07 04:13:23 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll [2016/09/07 04:13:23 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll [2016/09/07 04:13:23 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll [2016/09/07 04:13:23 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll [2016/09/07 04:13:23 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe [2016/09/07 04:13:23 | 000,062,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys [2016/09/07 04:13:23 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll [2016/09/07 04:13:23 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageUsage.dll [2016/09/07 04:13:23 | 000,041,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysResetErr.exe [2016/09/07 04:13:23 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netiougc.exe [2016/09/07 04:13:23 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll [2016/09/07 04:13:23 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slcext.dll [2016/09/07 04:13:23 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\C_IS2022.DLL [2016/09/07 04:13:23 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\c_GSM7.DLL [2016/09/07 04:13:23 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ResetEngine.exe [2016/09/07 04:13:22 | 000,471,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DscCore.dll [2016/09/07 04:13:22 | 000,204,288 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\WINDOWS\SysNative\DscCoreConfProv.dll [2016/09/07 04:13:14 | 003,617,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys [2016/09/07 04:13:14 | 001,859,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll [2016/09/07 04:13:14 | 001,694,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll [2016/09/07 04:13:14 | 001,643,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll [2016/09/07 04:13:14 | 001,430,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll [2016/09/07 04:13:14 | 001,279,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll [2016/09/07 04:13:14 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll [2016/09/07 04:13:14 | 001,099,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvix64.exe [2016/09/07 04:13:14 | 000,987,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvax64.exe [2016/09/07 04:13:14 | 000,942,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.efi [2016/09/07 04:13:14 | 000,936,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MCRecvSrc.dll [2016/09/07 04:13:14 | 000,857,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe [2016/09/07 04:13:14 | 000,852,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll [2016/09/07 04:13:14 | 000,807,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.exe [2016/09/07 04:13:14 | 000,782,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe [2016/09/07 04:13:14 | 000,770,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll [2016/09/07 04:13:14 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll [2016/09/07 04:13:14 | 000,595,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll [2016/09/07 04:13:14 | 000,587,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll [2016/09/07 04:13:14 | 000,568,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.UXRes.dll [2016/09/07 04:13:14 | 000,568,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.UXRes.dll [2016/09/07 04:13:14 | 000,554,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll [2016/09/07 04:13:14 | 000,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocore.dll [2016/09/07 04:13:14 | 000,529,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll [2016/09/07 04:13:14 | 000,521,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll [2016/09/07 04:13:14 | 000,509,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Bluetooth.dll [2016/09/07 04:13:14 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhext.dll [2016/09/07 04:13:14 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll [2016/09/07 04:13:14 | 000,259,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgentUserBroker.exe [2016/09/07 04:13:14 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll [2016/09/07 04:13:14 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinBioDataModel.dll [2016/09/07 04:13:14 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafpos.dll [2016/09/07 04:13:14 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll [2016/09/07 04:13:14 | 000,222,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgentUserBroker.exe [2016/09/07 04:13:14 | 000,211,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe [2016/09/07 04:13:14 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe [2016/09/07 04:13:14 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe [2016/09/07 04:13:14 | 000,104,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CastLaunch.dll [2016/09/07 04:13:14 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\updatepolicy.dll [2016/09/07 04:13:14 | 000,073,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hvservice.sys [2016/09/07 04:13:14 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinBioDataModelOOBE.exe [2016/09/07 04:13:14 | 000,050,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CompatTelRunner.exe [2016/09/07 04:13:14 | 000,044,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe [2016/09/07 04:13:14 | 000,036,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfpmp.exe [2016/09/07 04:13:14 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll [2016/09/07 04:13:14 | 000,026,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe [2016/09/07 04:13:14 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerSvc.dll [2016/09/07 04:13:14 | 000,020,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kdhvcom.dll [2016/09/07 04:13:13 | 017,187,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll [2016/09/07 04:13:13 | 013,867,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll [2016/09/07 04:13:13 | 007,219,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll [2016/09/07 04:13:13 | 005,722,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll [2016/09/07 04:13:13 | 003,245,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll [2016/09/07 04:13:13 | 003,116,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSAJApi.dll [2016/09/07 04:13:13 | 003,105,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstsc.exe [2016/09/07 04:13:13 | 002,999,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys [2016/09/07 04:13:13 | 002,913,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll [2016/09/07 04:13:13 | 002,846,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi.dll [2016/09/07 04:13:13 | 002,711,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll [2016/09/07 04:13:13 | 002,422,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSAJApi.dll [2016/09/07 04:13:13 | 002,289,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll [2016/09/07 04:13:13 | 002,166,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll [2016/09/07 04:13:13 | 002,143,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi.dll [2016/09/07 04:13:13 | 001,992,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll [2016/09/07 04:13:13 | 001,631,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll [2016/09/07 04:13:13 | 001,631,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll [2016/09/07 04:13:13 | 001,508,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys [2016/09/07 04:13:13 | 001,491,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll [2016/09/07 04:13:13 | 001,461,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll [2016/09/07 04:13:13 | 001,456,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll [2016/09/07 04:13:13 | 001,267,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll [2016/09/07 04:13:13 | 001,062,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll [2016/09/07 04:13:13 | 001,014,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll [2016/09/07 04:13:13 | 001,006,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3D12.dll [2016/09/07 04:13:13 | 000,884,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll [2016/09/07 04:13:13 | 000,860,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll [2016/09/07 04:13:13 | 000,846,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll [2016/09/07 04:13:13 | 000,806,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3D12.dll [2016/09/07 04:13:13 | 000,715,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\clusapi.dll [2016/09/07 04:13:13 | 000,681,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ClipSp.sys [2016/09/07 04:13:13 | 000,658,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys [2016/09/07 04:13:13 | 000,642,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.InkControls.dll [2016/09/07 04:13:13 | 000,584,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe [2016/09/07 04:13:13 | 000,544,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\uReFS.dll [2016/09/07 04:13:13 | 000,526,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OneDriveSettingSyncProvider.dll [2016/09/07 04:13:13 | 000,509,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncHost.exe [2016/09/07 04:13:13 | 000,468,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.InkControls.dll [2016/09/07 04:13:13 | 000,431,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpAXHolder.dll [2016/09/07 04:13:13 | 000,426,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OneDriveSettingSyncProvider.dll [2016/09/07 04:13:13 | 000,410,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\facecredentialprovider.dll [2016/09/07 04:13:13 | 000,402,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys [2016/09/07 04:13:13 | 000,389,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wevtapi.dll [2016/09/07 04:13:13 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll [2016/09/07 04:13:13 | 000,361,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll [2016/09/07 04:13:13 | 000,327,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\container.dll [2016/09/07 04:13:13 | 000,297,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wevtapi.dll [2016/09/07 04:13:13 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll [2016/09/07 04:13:13 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe [2016/09/07 04:13:13 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinesam.dll [2016/09/07 04:13:13 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll [2016/09/07 04:13:13 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\container.dll [2016/09/07 04:13:13 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\C_G18030.DLL [2016/09/07 04:13:13 | 000,210,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinesam.dll [2016/09/07 04:13:13 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipboardServer.dll [2016/09/07 04:13:13 | 000,184,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfksproxy.dll [2016/09/07 04:13:13 | 000,178,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostUser.dll [2016/09/07 04:13:13 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ClipboardServer.dll [2016/09/07 04:13:13 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys [2016/09/07 04:13:13 | 000,136,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudExperienceHostUser.dll [2016/09/07 04:13:13 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll [2016/09/07 04:13:13 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll [2016/09/07 04:13:13 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll [2016/09/07 04:13:13 | 000,077,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys [2016/09/07 04:13:13 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\updatepolicy.dll [2016/09/07 04:13:13 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys [2016/09/07 04:13:13 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidparse.sys [2016/09/07 04:13:13 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceassociation.dll [2016/09/07 04:13:13 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\delegatorprovider.dll [2016/09/07 04:13:13 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi_passthru.dll [2016/09/07 04:13:13 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\smphost.dll [2016/09/07 04:13:13 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\encapi.dll [2016/09/07 04:13:13 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\smphost.dll [2016/09/07 04:13:13 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\delegatorprovider.dll [2016/09/07 04:13:13 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi_passthru.dll [2016/09/07 04:13:13 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\C_IS2022.DLL [2016/09/07 04:13:13 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\c_GSM7.DLL [2016/09/07 04:00:38 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iisRtl.dll [2016/09/07 04:00:38 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\admwprox.dll [2016/09/07 04:00:38 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ahadmin.dll [2016/09/07 04:00:38 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iisreset.exe [2016/09/07 04:00:38 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wamregps.dll [2016/09/07 04:00:38 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iisrstap.dll [2016/09/07 04:00:37 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cngkeyhelper.dll [2016/09/07 04:00:35 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iisRtl.dll [2016/09/07 04:00:35 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\admwprox.dll [2016/09/07 04:00:35 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ahadmin.dll [2016/09/07 04:00:35 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iisreset.exe [2016/09/07 04:00:35 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wamregps.dll [2016/09/07 04:00:35 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iisrstap.dll [2016/09/07 04:00:35 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cngkeyhelper.dll [2016/09/07 03:58:43 | 000,199,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wof.sys [2016/09/07 03:08:59 | 000,011,433 | ---- | M] () -- C:\WINDOWS\diagwrn.xml [2016/09/07 03:08:59 | 000,011,433 | ---- | M] () -- C:\WINDOWS\diagerr.xml [2016/09/07 02:58:48 | 000,022,840 | ---- | M] () -- C:\WINDOWS\SysNative\emptyregdb.dat [2016/09/07 02:53:17 | 000,194,192 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2016/09/07 02:39:04 | 000,932,736 | ---- | M] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI [2016/09/07 02:33:28 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin [2016/09/07 02:32:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01011.Wdf [2016/09/07 01:06:09 | 000,000,924 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2016/09/07 00:59:41 | 000,000,920 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2016/08/25 23:43:07 | 000,828,408 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe [2016/08/25 23:43:07 | 000,176,632 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl [1 C:\Users\Jolene\Desktop\*.tmp files -> C:\Users\Jolene\Desktop\*.tmp -> ] ========== Files Created - No Company Name ========== [2016/09/10 19:46:12 | 000,001,182 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2016/09/07 04:28:40 | 000,036,799 | ---- | C] () -- C:\WINDOWS\SysWow64\license.rtf [2016/09/07 04:28:40 | 000,036,799 | ---- | C] () -- C:\WINDOWS\SysNative\license.rtf [2016/09/07 03:07:51 | 000,011,433 | ---- | C] () -- C:\WINDOWS\diagwrn.xml [2016/09/07 03:07:51 | 000,011,433 | ---- | C] () -- C:\WINDOWS\diagerr.xml [2016/09/07 02:52:56 | 2403,442,688 | -HS- | C] () -- C:\hiberfil.sys [2016/09/07 02:50:41 | 000,001,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [2016/09/07 02:40:25 | 000,000,352 | ---- | C] () -- C:\Users\Jolene\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk [2016/09/07 02:40:25 | 000,000,334 | ---- | C] () -- C:\Users\Jolene\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk [2016/09/07 02:39:13 | 001,013,994 | ---- | C] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2016/09/07 02:39:04 | 000,932,736 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI [2016/09/07 02:33:28 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2016/09/07 02:32:47 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01011.Wdf [2016/09/07 02:32:06 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2016/09/07 02:30:12 | 000,194,192 | ---- | C] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2016/07/23 15:57:11 | 000,000,036 | ---- | C] () -- C:\WINDOWS\progress.ini [2016/07/16 05:47:57 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat [2016/07/16 05:47:57 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT [2016/07/16 05:43:04 | 000,055,296 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll [2016/07/16 05:43:00 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll [2016/07/16 05:42:56 | 000,185,368 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll [2016/07/16 05:42:55 | 002,048,496 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll [2016/07/16 05:42:55 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat [2016/07/16 05:42:55 | 000,038,400 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe [2016/07/16 05:42:54 | 000,265,728 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll [2016/07/16 05:42:53 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat [2016/07/16 05:42:49 | 000,304,640 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll [2016/07/16 05:42:48 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll [2016/07/16 05:42:46 | 000,109,056 | ---- | C] () -- C:\WINDOWS\SysWow64\chartv.dll [2016/07/16 05:42:46 | 000,031,232 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll [2016/07/16 05:42:45 | 000,336,896 | ---- | C] () -- C:\WINDOWS\SysWow64\msinfo32.exe [2016/07/16 05:42:43 | 000,002,307 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini [2016/07/16 05:42:12 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin [2015/10/21 03:14:48 | 000,111,088 | ---- | C] () -- C:\WINDOWS\SysWow64\hsa-thunk.dll [2015/10/21 03:14:46 | 000,152,560 | ---- | C] () -- C:\WINDOWS\SysWow64\atieah32.exe [2015/10/21 03:14:44 | 001,004,024 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_as32.exe [2015/10/21 03:14:42 | 000,807,424 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_ld32.exe [2015/10/21 03:14:42 | 000,198,632 | ---- | C] () -- C:\WINDOWS\SysWow64\amdgfxinfo32.dll [2015/10/21 03:14:42 | 000,132,080 | ---- | C] () -- C:\WINDOWS\SysWow64\amdhdl32.dll [2015/08/22 02:54:10 | 000,204,952 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsvl.dat [2015/08/22 02:54:10 | 000,157,144 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsva.dat ========== ZeroAccess Check ========== [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\windows.storage.dll -- [2016/09/07 04:13:13 | 007,219,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\windows.storage.dll -- [2016/09/07 04:13:13 | 005,722,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2016/07/16 05:42:31 | 000,977,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2016/07/16 05:42:56 | 000,779,776 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2016/07/16 05:42:31 | 000,518,656 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2013/06/15 06:58:11 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Synaptics [2016/07/21 07:52:35 | 000,000,000 | ---D | M] -- C:\Users\Jolene\AppData\Roaming\Synaptics ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 237 bytes -> C:\Users\Jolene\SkyDrive:ms-properties @Alternate Data Stream - 183 bytes -> C:\Users\Jolene\SkyDrive.old:ms-properties < End of report >
  7. momof3

    Hacked comp

    DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.14393.0 Run by Jolene at 9:18:12 on 2016-09-11 Microsoft Windows 10 Home 10.0.14393.0.1252.1.1033.18.5730.3165 [GMT -6:00] . AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k RPCSS C:\WINDOWS\system32\dwm.exe C:\WINDOWS\system32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\atiesrxx.exe C:\WINDOWS\System32\svchost.exe -k NetworkService C:\WINDOWS\system32\atieclxx.exe C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\System32\spoolsv.exe C:\WINDOWS\system32\svchost.exe -k apphost C:\WINDOWS\System32\svchost.exe -k utcsvc C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe C:\WINDOWS\system32\svchost.exe -k appmodel C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\sihost.exe C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup C:\WINDOWS\system32\taskhostw.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\System32\RuntimeBroker.exe C:\WINDOWS\Explorer.EXE C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\WINDOWS\system32\dashost.exe C:\WINDOWS\system32\SettingSyncHost.exe C:\Program Files\Windows Defender\MSASCuiL.exe C:\Users\Jolene\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe C:\Program Files\Windows Defender\MpCmdRun.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\WINDOWS\system32\taskhostw.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeHost.exe C:\WINDOWS\system32\ApplicationFrameHost.exe C:\Program Files\WindowsApps\Microsoft.WindowsStore_11607.1001.51.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe C:\Program Files\WindowsApps\Microsoft.XboxApp_19.21.7006.0_x64__8wekyb3d8bbwe\XboxApp.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\System32\SystemSettingsBroker.exe C:\WINDOWS\system32\SearchProtocolHost.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\System32\smartscreen.exe C:\WINDOWS\system32\AUDIODG.EXE C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\cscript.exe . ============== Pseudo HJT Report =============== . BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll uRun: [OneDrive] "C:\Users\Jolene\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe mPolicies-System: DSCAutomationHostEnabled = dword:2 IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe TCP: NameServer = 192.168.0.1 TCP: Interfaces\{eb2df0db-e703-466f-9b6c-1cd312ad78d0} : DHCPNameServer = 192.168.0.1 Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll SSODL: WebCheck - <orphaned> CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe x64-Run: [WindowsDefender] "C:\Program Files (x86)\Windows Defender\MSASCuiL.exe" x64-mPolicies-System: DSCAutomationHostEnabled = dword:2 x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-SSODL: WebCheck - <orphaned> x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll . ============= SERVICES / DRIVERS =============== . R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2016-7-16 48152] R0 iorate;iorate;C:\WINDOWS\System32\drivers\iorate.sys [2016-7-16 45920] R0 volume;Volume driver;C:\WINDOWS\System32\drivers\volume.sys [2016-7-16 16224] R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2016-7-16 107032] R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2016-7-16 17944] R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2016-9-7 199008] R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2016-7-16 227328] R1 CLVirtualDrive;CLVirtualDrive;C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [2013-6-15 92536] R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2016-7-16 88576] R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-7-16 8192] R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2013-6-15 98208] R2 AMD External Events Utility;AMD External Events Utility;C:\WINDOWS\System32\atiesrxx.exe [2015-10-21 255472] R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-8-21 344064] R2 CDPSvc;Connected Devices Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] R2 CDPUserSvc_32702;CDPUserSvc_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R2 clreg;Virtual Registry for Containers;C:\WINDOWS\System32\drivers\registry.sys [2016-7-16 70144] R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2016-7-16 44496] R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc [2016-7-16 44496] R2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528] R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [2013-2-1 1039160] R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2013-6-15 2468496] R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2016-9-10 1514464] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-9-10 1136608] R2 OneSyncSvc_32702;Sync Host_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE [2013-6-15 239176] R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2016-7-16 78336] R2 SynTPEnhService;SynTPEnh Caller Service;C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-4-28 253960] R2 tiledatamodelsvc;Tile Data model server;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496] R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R2 wcifs;Windows Container Isolation;C:\WINDOWS\System32\drivers\wcifs.sys [2016-7-16 119648] R2 wcnfs;Windows Container Name Virtualization;C:\WINDOWS\System32\drivers\wcnfs.sys [2016-7-16 66560] R2 WpnService;Windows Push Notifications System Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\WINDOWS\System32\drivers\AtihdWT6.sys [2015-5-28 102912] R3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] R3 MBAMProtector;MBAMProtector;C:\WINDOWS\System32\drivers\mbam.sys [2016-9-10 27008] R3 MBAMSwissArmy;MBAMSwissArmy;C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [2016-9-10 192216] R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\WINDOWS\System32\drivers\mwac.sys [2016-9-10 65408] R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2016-7-16 20480] R3 PimIndexMaintenanceSvc_32702;Contact Data_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R3 RSP2STOR;Realtek PCIE CardReader Driver - P2;C:\WINDOWS\System32\drivers\RtsP2Stor.sys [2015-6-5 310528] R3 rt640x64;Realtek RT640 NT Driver;C:\WINDOWS\System32\drivers\rt640x64.sys [2016-7-16 589824] R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496] R3 TimeBrokerSvc;Time Broker;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496] R3 UnistoreSvc_32702;User Data Storage_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R3 usbfilter;AMD USB Filter Driver;C:\WINDOWS\System32\drivers\usbfilter.sys [2013-6-15 58536] R3 UserDataSvc_32702;User Data Access_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R3 UsoSvc;Update Orchestrator Service for Windows Update;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2016-7-16 123232] R3 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2016-7-16 347328] R3 WirelessButtonDriver;HP Wireless Button Driver Service;C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [2012-8-31 20800] S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService [2016-7-16 44496] S3 AcpiDev;ACPI Devices driver;C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-7-16 18432] S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2016-7-16 1135456] S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496] S3 amd_sata;amd_sata;C:\WINDOWS\System32\drivers\amd_sata.sys [2012-11-30 80552] S3 amd_xata;amd_xata;C:\WINDOWS\System32\drivers\amd_xata.sys [2012-11-30 26280] S3 applockerfltr;Smartlocker Filter Driver;C:\WINDOWS\System32\drivers\applockerfltr.sys [2016-7-16 15360] S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2016-7-16 44496] S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2016-7-16 44496] S3 bcmfn;bcmfn Service;C:\WINDOWS\System32\drivers\bcmfn.sys [2016-7-16 9728] S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2016-7-16 9728] S3 BthHFSrv;Bluetooth Handsfree Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2016-7-16 44496] S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-7-16 38912] S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2016-7-16 117248] S3 cht4iscsi;cht4iscsi;C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-7-16 346976] S3 cht4vbd;Chelsio Virtual Bus Driver;C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-7-16 2104160] S3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2016-7-16 44496] S3 DcpSvc;DataCollectionPublishingService;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-7-16 93184] S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 embeddedmode;Embedded Mode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496] S3 FrameServer;Windows Camera Frame Server;C:\WINDOWS\System32\svchost.exe -k Camera [2016-7-16 44496] S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072] S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-7-16 20480] S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-7-16 50016] S3 HvHost;HV Host Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iagpio.sys [2016-7-16 33280] S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2016-7-16 81408] S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-7-16 64512] S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-7-16 176384] S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2016-7-16 38128] S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2016-7-16 113152] S3 iaStorAV;Intel(R) SATA RAID Controller Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2016-7-16 673120] S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2016-7-16 526176] S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496] S3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-7-16 35840] S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-7-16 105824] S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-7-16 101216] S3 MessagingService_32702;MessagingService_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-7-16 842584] S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2016-7-16 108896] S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2016-7-16 90624] S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496] S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2016-7-16 58720] S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2016-7-16 61792] S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2016-7-16 928608] S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\WINDOWS\System32\drivers\scmbus.sys [2016-7-16 88416] S3 scmdisk0101;Microsoft NVDIMM-N disk driver;C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-7-16 123904] S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2016-7-16 1312768] S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2016-7-16 151904] S3 SmbDrv;SmbDrv;C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2013-3-8 28400] S3 SmbDrvI;SmbDrvI;C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2013-3-8 33008] S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2016-7-16 44496] S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2016-9-7 77664] S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2016-7-16 32096] S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2016-7-16 287744] S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2016-7-16 95744] S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [2016-7-16 108544] S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-7-16 50688] S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2016-7-16 45568] S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2016-7-16 28512] S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2016-7-16 263008] S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2016-7-16 96608] S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-7-16 137056] S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2016-7-16 28512] S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2016-7-16 57696] S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2016-7-16 27488] S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2016-7-16 32256] S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\WINDOWS\System32\drivers\vmgid.sys [2016-7-16 10240] S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 w3logsvc;W3C Logging Service;C:\WINDOWS\System32\svchost.exe -k apphost [2016-7-16 44496] S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496] S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2016-7-16 719360] S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2016-7-16 44496] S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2016-7-16 32096] S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2016-7-16 64864] S3 wisvc;Windows Insider Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] S3 WpnUserService_32702;Windows Push Notifications User Service_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2016-7-16 258560] S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2016-9-7 43520] S4 shpamsvc;Shared PC Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] . =============== Created Last 30 ================ . 2016-09-11 15:05:55 11847048 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{621314D6-D227-4040-AD18-F83119AFD4A4}\mpengine.dll 2016-09-11 01:46:54 192216 ----a-w- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys 2016-09-11 01:45:48 65408 ----a-w- C:\WINDOWS\System32\drivers\mwac.sys 2016-09-11 01:45:48 27008 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys 2016-09-11 01:45:48 140672 ----a-w- C:\WINDOWS\System32\drivers\mbamchameleon.sys 2016-09-11 01:45:47 -------- d---a-w- C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-09-11 01:45:47 -------- d-----w- C:\ProgramData\Malwarebytes 2016-09-11 01:45:01 -------- d-----w- C:\Users\Jolene\AppData\Local\Programs 2016-09-11 01:31:15 11847048 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll 2016-09-10 17:30:28 -------- d-----w- C:\AdwCleaner 2016-09-10 15:43:17 -------- d--h--w- C:\OneDriveTemp 2016-09-09 14:24:30 -------- d-----w- C:\ProgramData\Microsoft OneDrive 2016-09-09 14:20:48 -------- d-----w- C:\Users\Jolene\AppData\Local\ConnectedDevicesPlatform 2016-09-07 10:28:52 -------- d-sh--w- C:\Recovery 2016-09-07 10:28:42 -------- dc----w- C:\WINDOWS\Panther 2016-09-07 10:17:18 -------- d-----w- C:\Windows.old 2016-09-07 10:05:01 -------- d-----w- C:\WINDOWS\System32\Microsoft 2016-09-07 10:00:49 -------- d-----w- C:\inetpub 2016-09-07 09:59:25 778936 ----a-w- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll 2016-09-07 09:59:25 35480 ----a-w- C:\WINDOWS\SysWow64\TsWpfWrp.exe 2016-09-07 09:59:25 103120 ----a-w- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll 2016-09-07 09:59:19 35480 ----a-w- C:\WINDOWS\System32\TsWpfWrp.exe 2016-09-07 09:59:18 1166520 ----a-w- C:\WINDOWS\System32\PresentationNative_v0300.dll 2016-09-07 09:59:17 124624 ----a-w- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll 2016-09-07 09:58:42 199008 ----a-w- C:\WINDOWS\System32\drivers\wof.sys 2016-09-07 09:10:08 -------- d-----w- C:\ProgramData\USOShared 2016-09-07 09:09:50 -------- d-sh--we C:\ProgramData\Documents 2016-09-07 08:57:57 -------- d-----w- C:\WINDOWS\System32\wbem\Performance 2016-09-07 08:53:57 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\good 2016-09-07 08:53:57 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\bad 2016-09-07 08:35:21 -------- d-----w- C:\ProgramData\AMD 2016-09-07 08:35:19 -------- d---a-w- C:\Program Files\ATI Technologies 2016-09-07 08:34:37 -------- d---a-w- C:\Program Files (x86)\ATI Technologies 2016-09-07 08:34:19 -------- d-----w- C:\ProgramData\Package Cache 2016-09-07 08:34:13 -------- d-----w- C:\WINDOWS\SysWow64\sda 2016-09-07 08:33:50 -------- d-----w- C:\WINDOWS\System32\SRSLabs 2016-09-07 08:33:46 -------- d-----w- C:\Program Files\Realtek 2016-09-07 08:33:45 -------- d-----w- C:\WINDOWS\SysWow64\RTCOM 2016-09-07 08:33:35 2716672 ----a-w- C:\WINDOWS\SysWow64\PrintConfig.dll 2016-09-07 08:33:28 0 ----a-w- C:\WINDOWS\ativpsrm.bin 2016-09-07 08:33:12 -------- d-----w- C:\Program Files\AMD 2016-09-07 08:32:21 -------- d-----w- C:\Program Files\Synaptics 2016-09-07 08:31:29 -------- d-----w- C:\WINDOWS\System32\wbem\MOF 2016-09-07 08:30:27 -------- d-----w- C:\WINDOWS\System32\SleepStudy 2016-09-07 08:30:27 -------- d-----w- C:\WINDOWS\ServiceProfiles 2016-09-05 03:09:37 1167568 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0AAA3565-D092-4E80-A442-DC998C087473}\gapaengine.dll . ==================== Find3M ==================== . 2016-09-07 10:00:38 55296 ----a-w- C:\WINDOWS\System32\admwprox.dll 2016-08-26 05:43:07 828408 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe 2016-08-26 05:43:07 176632 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl 2016-07-27 19:25:34 504488 ------w- C:\WINDOWS\System32\MpSigStub.exe 2016-07-16 14:29:33 583680 ----a-w- C:\WINDOWS\System32\quickassist.exe 2016-07-16 14:26:57 37888 ----a-w- C:\WINDOWS\System32\rfxvmt.dll 2016-07-16 14:26:56 503808 ----a-w- C:\WINDOWS\System32\SnippingTool.exe 2016-07-16 14:26:55 3584000 ----a-w- C:\WINDOWS\System32\InkAnalysisLegacyCom.dll 2016-07-16 14:26:55 33280 ----a-w- C:\WINDOWS\System32\inetppui.dll 2016-07-16 14:26:55 21504 ----a-w- C:\WINDOWS\System32\wpnpinst.exe 2016-07-16 14:26:55 174592 ----a-w- C:\WINDOWS\System32\inetpp.dll 2016-07-16 14:26:54 51712 ----a-w- C:\WINDOWS\System32\DFDWiz.exe 2016-07-16 14:14:35 5739008 ----a-w- C:\WINDOWS\System32\prm0009.dll 2016-07-16 14:14:34 6354944 ----a-w- C:\WINDOWS\System32\NlsData0009.dll 2016-07-16 14:14:34 2629120 ----a-w- C:\WINDOWS\System32\NlsLexicons0009.dll 2016-07-16 14:14:33 5489664 ----a-w- C:\WINDOWS\SysWow64\NlsData0009.dll 2016-07-16 14:14:33 2629120 ----a-w- C:\WINDOWS\SysWow64\NlsLexicons0009.dll 2016-07-16 14:13:16 11776 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\NdisImPlatform.sys.mui 2016-07-16 14:13:14 8192 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\fwpkclnt.sys.mui 2016-07-16 14:13:14 6656 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\ndiscap.sys.mui 2016-07-16 14:13:14 3584 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\wfplwfs.sys.mui 2016-07-16 14:13:14 2560 ----a-w- C:\WINDOWS\SysWow64\drivers\UMDF\en-US\SensorsCx.dll.mui 2016-07-16 11:45:38 209408 ----a-w- C:\WINDOWS\SysWow64\msclmd.dll 2016-07-16 11:45:36 231424 ----a-w- C:\WINDOWS\System32\msclmd.dll 2016-07-16 11:43:59 76800 ----a-w- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll 2016-07-16 11:42:58 9728 ----a-w- C:\WINDOWS\SysWow64\KBDHEPT.DLL 2016-07-16 11:41:59 76288 ----a-w- C:\WINDOWS\System32\MusNotificationUx.exe 2016-07-16 06:04:30 120320 ----a-w- C:\WINDOWS\SysWow64\poqexec.exe 2016-07-16 06:04:29 142848 ----a-w- C:\WINDOWS\System32\poqexec.exe 2016-07-16 06:04:27 267104 ----a-w- C:\WINDOWS\System32\wdscore.dll 2016-07-16 06:04:26 854528 ----a-w- C:\WINDOWS\System32\SmiEngine.dll 2016-07-16 06:04:26 206848 ----a-w- C:\WINDOWS\System32\PkgMgr.exe 2016-07-16 06:04:26 133472 ----a-w- C:\WINDOWS\System32\SSShim.dll 2016-07-16 06:04:25 220000 ----a-w- C:\WINDOWS\SysWow64\wdscore.dll 2016-07-16 06:04:25 201728 ----a-w- C:\WINDOWS\SysWow64\PkgMgr.exe 2016-07-16 06:04:25 115552 ----a-w- C:\WINDOWS\SysWow64\SSShim.dll 2016-07-01 03:57:06 59392 ----a-w- C:\WINDOWS\System32\cdpreference.exe 2016-07-01 03:40:34 34304 ----a-w- C:\WINDOWS\SysWow64\Windows.Speech.Pal.dll . ============= FINISH: 9:19:59.34 ===============
  8. momof3

    Hacked comp

    DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.14393.0 Run by Jolene at 9:18:12 on 2016-09-11 Microsoft Windows 10 Home 10.0.14393.0.1252.1.1033.18.5730.3165 [GMT -6:00] . AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k RPCSS C:\WINDOWS\system32\dwm.exe C:\WINDOWS\system32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\atiesrxx.exe C:\WINDOWS\System32\svchost.exe -k NetworkService C:\WINDOWS\system32\atieclxx.exe C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\System32\spoolsv.exe C:\WINDOWS\system32\svchost.exe -k apphost C:\WINDOWS\System32\svchost.exe -k utcsvc C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe C:\WINDOWS\system32\svchost.exe -k appmodel C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\sihost.exe C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup C:\WINDOWS\system32\taskhostw.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\System32\RuntimeBroker.exe C:\WINDOWS\Explorer.EXE C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\WINDOWS\system32\dashost.exe C:\WINDOWS\system32\SettingSyncHost.exe C:\Program Files\Windows Defender\MSASCuiL.exe C:\Users\Jolene\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe C:\Program Files\Windows Defender\MpCmdRun.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\WINDOWS\system32\taskhostw.exe C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeHost.exe C:\WINDOWS\system32\ApplicationFrameHost.exe C:\Program Files\WindowsApps\Microsoft.WindowsStore_11607.1001.51.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe C:\Program Files\WindowsApps\Microsoft.XboxApp_19.21.7006.0_x64__8wekyb3d8bbwe\XboxApp.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\System32\SystemSettingsBroker.exe C:\WINDOWS\system32\SearchProtocolHost.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\System32\smartscreen.exe C:\WINDOWS\system32\AUDIODG.EXE C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\cscript.exe . ============== Pseudo HJT Report =============== . BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll uRun: [OneDrive] "C:\Users\Jolene\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe mPolicies-System: DSCAutomationHostEnabled = dword:2 IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe TCP: NameServer = 192.168.0.1 TCP: Interfaces\{eb2df0db-e703-466f-9b6c-1cd312ad78d0} : DHCPNameServer = 192.168.0.1 Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll SSODL: WebCheck - <orphaned> CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe x64-Run: [WindowsDefender] "C:\Program Files (x86)\Windows Defender\MSASCuiL.exe" x64-mPolicies-System: DSCAutomationHostEnabled = dword:2 x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-SSODL: WebCheck - <orphaned> x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll . ============= SERVICES / DRIVERS =============== . R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2016-7-16 48152] R0 iorate;iorate;C:\WINDOWS\System32\drivers\iorate.sys [2016-7-16 45920] R0 volume;Volume driver;C:\WINDOWS\System32\drivers\volume.sys [2016-7-16 16224] R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2016-7-16 107032] R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2016-7-16 17944] R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2016-9-7 199008] R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2016-7-16 227328] R1 CLVirtualDrive;CLVirtualDrive;C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [2013-6-15 92536] R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2016-7-16 88576] R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-7-16 8192] R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2013-6-15 98208] R2 AMD External Events Utility;AMD External Events Utility;C:\WINDOWS\System32\atiesrxx.exe [2015-10-21 255472] R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-8-21 344064] R2 CDPSvc;Connected Devices Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] R2 CDPUserSvc_32702;CDPUserSvc_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R2 clreg;Virtual Registry for Containers;C:\WINDOWS\System32\drivers\registry.sys [2016-7-16 70144] R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2016-7-16 44496] R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc [2016-7-16 44496] R2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528] R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [2013-2-1 1039160] R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2013-6-15 2468496] R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2016-9-10 1514464] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-9-10 1136608] R2 OneSyncSvc_32702;Sync Host_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE [2013-6-15 239176] R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2016-7-16 78336] R2 SynTPEnhService;SynTPEnh Caller Service;C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-4-28 253960] R2 tiledatamodelsvc;Tile Data model server;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496] R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R2 wcifs;Windows Container Isolation;C:\WINDOWS\System32\drivers\wcifs.sys [2016-7-16 119648] R2 wcnfs;Windows Container Name Virtualization;C:\WINDOWS\System32\drivers\wcnfs.sys [2016-7-16 66560] R2 WpnService;Windows Push Notifications System Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\WINDOWS\System32\drivers\AtihdWT6.sys [2015-5-28 102912] R3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] R3 MBAMProtector;MBAMProtector;C:\WINDOWS\System32\drivers\mbam.sys [2016-9-10 27008] R3 MBAMSwissArmy;MBAMSwissArmy;C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [2016-9-10 192216] R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\WINDOWS\System32\drivers\mwac.sys [2016-9-10 65408] R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2016-7-16 20480] R3 PimIndexMaintenanceSvc_32702;Contact Data_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R3 RSP2STOR;Realtek PCIE CardReader Driver - P2;C:\WINDOWS\System32\drivers\RtsP2Stor.sys [2015-6-5 310528] R3 rt640x64;Realtek RT640 NT Driver;C:\WINDOWS\System32\drivers\rt640x64.sys [2016-7-16 589824] R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496] R3 TimeBrokerSvc;Time Broker;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496] R3 UnistoreSvc_32702;User Data Storage_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R3 usbfilter;AMD USB Filter Driver;C:\WINDOWS\System32\drivers\usbfilter.sys [2013-6-15 58536] R3 UserDataSvc_32702;User Data Access_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] R3 UsoSvc;Update Orchestrator Service for Windows Update;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] R3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2016-7-16 123232] R3 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2016-7-16 347328] R3 WirelessButtonDriver;HP Wireless Button Driver Service;C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [2012-8-31 20800] S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService [2016-7-16 44496] S3 AcpiDev;ACPI Devices driver;C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-7-16 18432] S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2016-7-16 1135456] S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496] S3 amd_sata;amd_sata;C:\WINDOWS\System32\drivers\amd_sata.sys [2012-11-30 80552] S3 amd_xata;amd_xata;C:\WINDOWS\System32\drivers\amd_xata.sys [2012-11-30 26280] S3 applockerfltr;Smartlocker Filter Driver;C:\WINDOWS\System32\drivers\applockerfltr.sys [2016-7-16 15360] S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2016-7-16 44496] S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2016-7-16 44496] S3 bcmfn;bcmfn Service;C:\WINDOWS\System32\drivers\bcmfn.sys [2016-7-16 9728] S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2016-7-16 9728] S3 BthHFSrv;Bluetooth Handsfree Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2016-7-16 44496] S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-7-16 38912] S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2016-7-16 117248] S3 cht4iscsi;cht4iscsi;C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-7-16 346976] S3 cht4vbd;Chelsio Virtual Bus Driver;C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-7-16 2104160] S3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2016-7-16 44496] S3 DcpSvc;DataCollectionPublishingService;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-7-16 93184] S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 embeddedmode;Embedded Mode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496] S3 FrameServer;Windows Camera Frame Server;C:\WINDOWS\System32\svchost.exe -k Camera [2016-7-16 44496] S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072] S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-7-16 20480] S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-7-16 50016] S3 HvHost;HV Host Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iagpio.sys [2016-7-16 33280] S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2016-7-16 81408] S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-7-16 64512] S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-7-16 176384] S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2016-7-16 38128] S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2016-7-16 113152] S3 iaStorAV;Intel(R) SATA RAID Controller Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2016-7-16 673120] S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2016-7-16 526176] S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496] S3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-7-16 35840] S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-7-16 105824] S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-7-16 101216] S3 MessagingService_32702;MessagingService_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-7-16 842584] S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2016-7-16 108896] S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2016-7-16 90624] S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496] S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2016-7-16 58720] S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2016-7-16 61792] S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2016-7-16 928608] S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\WINDOWS\System32\drivers\scmbus.sys [2016-7-16 88416] S3 scmdisk0101;Microsoft NVDIMM-N disk driver;C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-7-16 123904] S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2016-7-16 1312768] S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2016-7-16 151904] S3 SmbDrv;SmbDrv;C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2013-3-8 28400] S3 SmbDrvI;SmbDrvI;C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2013-3-8 33008] S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2016-7-16 44496] S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2016-9-7 77664] S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2016-7-16 32096] S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2016-7-16 287744] S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2016-7-16 95744] S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [2016-7-16 108544] S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-7-16 50688] S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2016-7-16 45568] S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2016-7-16 28512] S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2016-7-16 263008] S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2016-7-16 96608] S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-7-16 137056] S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2016-7-16 28512] S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2016-7-16 57696] S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2016-7-16 27488] S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2016-7-16 32256] S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\WINDOWS\System32\drivers\vmgid.sys [2016-7-16 10240] S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496] S3 w3logsvc;W3C Logging Service;C:\WINDOWS\System32\svchost.exe -k apphost [2016-7-16 44496] S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2016-7-16 44496] S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2016-7-16 719360] S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2016-7-16 44496] S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2016-7-16 32096] S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2016-7-16 64864] S3 wisvc;Windows Insider Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] S3 WpnUserService_32702;Windows Push Notifications User Service_32702;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496] S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2016-7-16 258560] S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2016-9-7 43520] S4 shpamsvc;Shared PC Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2016-7-16 44496] S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService [2016-7-16 44496] . =============== Created Last 30 ================ . 2016-09-11 15:05:55 11847048 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{621314D6-D227-4040-AD18-F83119AFD4A4}\mpengine.dll 2016-09-11 01:46:54 192216 ----a-w- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys 2016-09-11 01:45:48 65408 ----a-w- C:\WINDOWS\System32\drivers\mwac.sys 2016-09-11 01:45:48 27008 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys 2016-09-11 01:45:48 140672 ----a-w- C:\WINDOWS\System32\drivers\mbamchameleon.sys 2016-09-11 01:45:47 -------- d---a-w- C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-09-11 01:45:47 -------- d-----w- C:\ProgramData\Malwarebytes 2016-09-11 01:45:01 -------- d-----w- C:\Users\Jolene\AppData\Local\Programs 2016-09-11 01:31:15 11847048 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll 2016-09-10 17:30:28 -------- d-----w- C:\AdwCleaner 2016-09-10 15:43:17 -------- d--h--w- C:\OneDriveTemp 2016-09-09 14:24:30 -------- d-----w- C:\ProgramData\Microsoft OneDrive 2016-09-09 14:20:48 -------- d-----w- C:\Users\Jolene\AppData\Local\ConnectedDevicesPlatform 2016-09-07 10:28:52 -------- d-sh--w- C:\Recovery 2016-09-07 10:28:42 -------- dc----w- C:\WINDOWS\Panther 2016-09-07 10:17:18 -------- d-----w- C:\Windows.old 2016-09-07 10:05:01 -------- d-----w- C:\WINDOWS\System32\Microsoft 2016-09-07 10:00:49 -------- d-----w- C:\inetpub 2016-09-07 09:59:25 778936 ----a-w- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll 2016-09-07 09:59:25 35480 ----a-w- C:\WINDOWS\SysWow64\TsWpfWrp.exe 2016-09-07 09:59:25 103120 ----a-w- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll 2016-09-07 09:59:19 35480 ----a-w- C:\WINDOWS\System32\TsWpfWrp.exe 2016-09-07 09:59:18 1166520 ----a-w- C:\WINDOWS\System32\PresentationNative_v0300.dll 2016-09-07 09:59:17 124624 ----a-w- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll 2016-09-07 09:58:42 199008 ----a-w- C:\WINDOWS\System32\drivers\wof.sys 2016-09-07 09:10:08 -------- d-----w- C:\ProgramData\USOShared 2016-09-07 09:09:50 -------- d-sh--we C:\ProgramData\Documents 2016-09-07 08:57:57 -------- d-----w- C:\WINDOWS\System32\wbem\Performance 2016-09-07 08:53:57 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\good 2016-09-07 08:53:57 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\bad 2016-09-07 08:35:21 -------- d-----w- C:\ProgramData\AMD 2016-09-07 08:35:19 -------- d---a-w- C:\Program Files\ATI Technologies 2016-09-07 08:34:37 -------- d---a-w- C:\Program Files (x86)\ATI Technologies 2016-09-07 08:34:19 -------- d-----w- C:\ProgramData\Package Cache 2016-09-07 08:34:13 -------- d-----w- C:\WINDOWS\SysWow64\sda 2016-09-07 08:33:50 -------- d-----w- C:\WINDOWS\System32\SRSLabs 2016-09-07 08:33:46 -------- d-----w- C:\Program Files\Realtek 2016-09-07 08:33:45 -------- d-----w- C:\WINDOWS\SysWow64\RTCOM 2016-09-07 08:33:35 2716672 ----a-w- C:\WINDOWS\SysWow64\PrintConfig.dll 2016-09-07 08:33:28 0 ----a-w- C:\WINDOWS\ativpsrm.bin 2016-09-07 08:33:12 -------- d-----w- C:\Program Files\AMD 2016-09-07 08:32:21 -------- d-----w- C:\Program Files\Synaptics 2016-09-07 08:31:29 -------- d-----w- C:\WINDOWS\System32\wbem\MOF 2016-09-07 08:30:27 -------- d-----w- C:\WINDOWS\System32\SleepStudy 2016-09-07 08:30:27 -------- d-----w- C:\WINDOWS\ServiceProfiles 2016-09-05 03:09:37 1167568 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0AAA3565-D092-4E80-A442-DC998C087473}\gapaengine.dll . ==================== Find3M ==================== . 2016-09-07 10:00:38 55296 ----a-w- C:\WINDOWS\System32\admwprox.dll 2016-08-26 05:43:07 828408 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe 2016-08-26 05:43:07 176632 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl 2016-07-27 19:25:34 504488 ------w- C:\WINDOWS\System32\MpSigStub.exe 2016-07-16 14:29:33 583680 ----a-w- C:\WINDOWS\System32\quickassist.exe 2016-07-16 14:26:57 37888 ----a-w- C:\WINDOWS\System32\rfxvmt.dll 2016-07-16 14:26:56 503808 ----a-w- C:\WINDOWS\System32\SnippingTool.exe 2016-07-16 14:26:55 3584000 ----a-w- C:\WINDOWS\System32\InkAnalysisLegacyCom.dll 2016-07-16 14:26:55 33280 ----a-w- C:\WINDOWS\System32\inetppui.dll 2016-07-16 14:26:55 21504 ----a-w- C:\WINDOWS\System32\wpnpinst.exe 2016-07-16 14:26:55 174592 ----a-w- C:\WINDOWS\System32\inetpp.dll 2016-07-16 14:26:54 51712 ----a-w- C:\WINDOWS\System32\DFDWiz.exe 2016-07-16 14:14:35 5739008 ----a-w- C:\WINDOWS\System32\prm0009.dll 2016-07-16 14:14:34 6354944 ----a-w- C:\WINDOWS\System32\NlsData0009.dll 2016-07-16 14:14:34 2629120 ----a-w- C:\WINDOWS\System32\NlsLexicons0009.dll 2016-07-16 14:14:33 5489664 ----a-w- C:\WINDOWS\SysWow64\NlsData0009.dll 2016-07-16 14:14:33 2629120 ----a-w- C:\WINDOWS\SysWow64\NlsLexicons0009.dll 2016-07-16 14:13:16 11776 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\NdisImPlatform.sys.mui 2016-07-16 14:13:14 8192 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\fwpkclnt.sys.mui 2016-07-16 14:13:14 6656 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\ndiscap.sys.mui 2016-07-16 14:13:14 3584 ----a-w- C:\WINDOWS\SysWow64\drivers\en-US\wfplwfs.sys.mui 2016-07-16 14:13:14 2560 ----a-w- C:\WINDOWS\SysWow64\drivers\UMDF\en-US\SensorsCx.dll.mui 2016-07-16 11:45:38 209408 ----a-w- C:\WINDOWS\SysWow64\msclmd.dll 2016-07-16 11:45:36 231424 ----a-w- C:\WINDOWS\System32\msclmd.dll 2016-07-16 11:43:59 76800 ----a-w- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll 2016-07-16 11:42:58 9728 ----a-w- C:\WINDOWS\SysWow64\KBDHEPT.DLL 2016-07-16 11:41:59 76288 ----a-w- C:\WINDOWS\System32\MusNotificationUx.exe 2016-07-16 06:04:30 120320 ----a-w- C:\WINDOWS\SysWow64\poqexec.exe 2016-07-16 06:04:29 142848 ----a-w- C:\WINDOWS\System32\poqexec.exe 2016-07-16 06:04:27 267104 ----a-w- C:\WINDOWS\System32\wdscore.dll 2016-07-16 06:04:26 854528 ----a-w- C:\WINDOWS\System32\SmiEngine.dll 2016-07-16 06:04:26 206848 ----a-w- C:\WINDOWS\System32\PkgMgr.exe 2016-07-16 06:04:26 133472 ----a-w- C:\WINDOWS\System32\SSShim.dll 2016-07-16 06:04:25 220000 ----a-w- C:\WINDOWS\SysWow64\wdscore.dll 2016-07-16 06:04:25 201728 ----a-w- C:\WINDOWS\SysWow64\PkgMgr.exe 2016-07-16 06:04:25 115552 ----a-w- C:\WINDOWS\SysWow64\SSShim.dll 2016-07-01 03:57:06 59392 ----a-w- C:\WINDOWS\System32\cdpreference.exe 2016-07-01 03:40:34 34304 ----a-w- C:\WINDOWS\SysWow64\Windows.Speech.Pal.dll . ============= FINISH: 9:19:59.34 ===============
  9. momof3

    Hacked comp

    Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 9/10/2016 Scan Time: 8:19 PM Logfile: Administrator: Yes Version: 0.0.0.0000 Malware Database: v2016.09.11.01 Rootkit Database: v2016.08.15.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 10 CPU: x64 File System: NTFS User: Jolene Scan Type: Threat Scan Result: Completed Objects Scanned: 329238 Time Elapsed: 26 min, 20 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 0 (No malicious items detected) Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 0 (No malicious items detected) Physical Sectors: 0 (No malicious items detected) (end)
  10. momof3

    Hacked comp

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 8.0.7 (07.03.2016) Operating System: Windows 10 Home x64 Ran by Jolene (Administrator) on Sat 09/10/2016 at 19:31:05.82 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ File System: 0 Registry: 2 Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B96863F5-3A7F-4F88-A08A-6C3A3D8811F1} (Registry Key) Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{B96863F5-3A7F-4F88-A08A-6C3A3D8811F1} (Registry Key) ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Sat 09/10/2016 at 19:36:55.72 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  11. momof3

    Hacked comp

    # AdwCleaner v6.010 - Logfile created 10/09/2016 at 11:38:00 # Updated on 12/08/2016 by ToolsLib # Database : 2016-09-10.1 [Server] # Operating System : Windows 10 Home (X64) # Username : Jolene - JOLAPTOP # Running from : C:\Users\Jolene\Downloads\adwcleaner_6.010.exe # Mode: Clean # Support : https://toolslib.net/forum ***** [ Services ] ***** ***** [ Folders ] ***** [-] Folder deleted: C:\Users\Jolene\AppData\LocalLow\AVG SafeGuard toolbar [-] Folder deleted: C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn ***** [ Files ] ***** [-] File deleted: C:\Users\Public\Desktop\eBay.lnk ***** [ DLL ] ***** ***** [ WMI ] ***** ***** [ Shortcuts ] ***** ***** [ Scheduled Tasks ] ***** ***** [ Registry ] ***** [-] Data restored: HKU\S-1-5-21-2220262111-1223720106-2740516049-1002\Software\Microsoft\Internet Explorer\Main [Start Page] [-] Data restored: HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] ***** [ Web browsers ] ***** [-] [C:\Users\Jolene\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: chfdnecihphmhljaaejmgoiahnihplgn ************************* :: "Tracing" keys deleted :: Winsock settings cleared ************************* C:\AdwCleaner\AdwCleaner[C0].txt - [1324 Bytes] - [10/09/2016 11:38:00] C:\AdwCleaner\AdwCleaner[S0].txt - [1798 Bytes] - [10/09/2016 11:36:40] ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1470 Bytes] ##########
  12. momof3

    Hacked comp

    My laptop is running super slow and it decided that it wanted to reset it's self and I lost my Microsoft Office programs. And I recited a phone call from somebody foreign claiming they worked with Microsoft and my computer is sending them notifications that I have something trolling and have a bunch of add ware