Inactive Cleanup Help - File Explorer Freezing

liltxkg

liltxkg

Posts: 6   +0
Not tech savvy newbie. I've ran the Microsoft Defender Scan. I've tried multiple Google self-help tutorials, but FileExplorer keeps crashing and the last suggestion was a possible malware infection. Help? FRST.txt Log Part1:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-07-2022
Ran by Kelly (administrator) on KELLY-HP (Hewlett-Packard HP ProBook 4540s) (27-07-2022 20:03:23)
Running from C:\Users\Kelly\Downloads
Loaded Profiles: Kelly
Platform: Microsoft Windows 10 Pro Version 21H2 19044.1826 (X64) Language: English (United States)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat.exe
(Amazon.com Services LLC -> Amazon) C:\Users\Kelly\AppData\Roaming\Chime\Chime.exe
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\103.0.1264.71\msedgewebview2.exe <12>
(C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22052.136.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22052.136.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy\YourPhoneAppProxy.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(C:\Users\Kelly\AppData\Roaming\Chime\Chime.exe ->) (Amazon.com Services LLC -> The CefSharp Authors) C:\Users\Kelly\AppData\Roaming\Chime\CefSharp.BrowserSubprocess.exe <3>
(CANON INC. -> CANON INC.) C:\Program Files (x86)\Canon\OIPTonerStatus\CnTnrStsTask.exe
(CANON INC. -> CANON INC.) C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE
(conhost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(conhost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14>
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intuit, Inc. -> Intuit Inc.) [File not signed] C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <36>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(services.exe ->) (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(services.exe ->) (IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intuit Inc.) [File not signed] C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(services.exe ->) (Intuit) [File not signed] C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxCalendarAppImm.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\prevhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(winlogon.exe ->) (DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [MFNetworkScannerSelector] => C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE [425512 2015-01-21] (CANON INC. -> CANON INC.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2013-06-24] (IDT, Inc.) [File not signed]
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [362056 2022-05-05] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [642664 2013-12-24] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863848 2013-12-24] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [3776824 2015-12-10] (Intuit, Inc. -> Intuit Inc. All rights reserved.)
HKLM-x32\...\Run: [Canon Toner Status] => C:\Program Files (x86)\Canon\OIPTonerStatus\CnTnrStsTask.exe [1821192 2015-02-24] (CANON INC. -> CANON INC.)
HKLM-x32\...\Run: [M15A] => C:\windows\twain_32\Brimm15a\Common\TwDsUiLaunch.exe [68096 2016-11-30] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11186440 2022-07-16] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-26] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe, <==== ATTENTION
HKLM\...\Policies\Explorer\Run: [BtvStack] => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\Run: [Amazon Music Helper] => C:\Users\Kelly\AppData\Local\Amazon Music\Amazon Music Helper.exe [3051960 2018-05-16] (Amazon Services LLC -> Amazon Services LLC)
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\Run: [Amazon Music] => C:\Users\Kelly\AppData\Local\Amazon Music\Amazon Music.exe [20028856 2018-05-16] (Amazon Services LLC -> Amazon Services LLC)
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\Run: [Chime] => C:\Users\Kelly\AppData\Roaming\Chime\Chime.exe [8231920 2022-04-28] (Amazon.com Services LLC -> Amazon)
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5492224 2022-07-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\Run: [com.messenger] => "C:\Users\Kelly\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (No File)
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\Run: [MicrosoftEdgeAutoLaunch_5B8D12AB4171EFD84CFAC473E09CF6F8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601832 2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2640272 2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\ssText3d.scr [224768 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp101: C:\Windows\System32\spool\prtprocs\x64\hpfpp101.dll [253440 2010-04-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\windows\system32\AdobePDF.dll [55872 2015-06-26] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon MFNP Port: C:\windows\system32\CNCENPM6.dll [152064 2013-01-31] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\windows\system32\CNAS0MOK.DLL [1006080 2012-08-09] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\CutePDF Writer Monitor: C:\windows\system32\cpwmon64.dll [87152 2012-10-04] (Acro Software Inc -> )
HKLM\...\Print\Monitors\CutePDF Writer Monitor v4.0: C:\windows\system32\cpwmon64_v40.dll [89584 2019-10-20] (Acro Software Inc -> )
HKLM\...\Print\Monitors\EPSON WF-7510 Series 64MonitorBA: C:\windows\system32\E_YLMHCA.DLL [120320 2011-04-20] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\windows\system32\enppmon.dll [558080 2011-08-30] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\windows\system32\hpbprtmon.dll [355840 2012-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
HKLM\...\Print\Monitors\hpf3l101.dll: C:\windows\system32\hpf3l101.dll [138752 2010-04-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\KM Language Monitor: C:\windows\system32\KMPJL64.DLL [80384 2010-06-29] (Microsoft Windows Hardware Compatibility Publisher -> KYOCERA MITA Corporation)
HKLM\...\Print\Monitors\PDFC: C:\windows\system32\pdfc_port.dll [20600 2013-06-05] (PDF Complete -> PDF Complete, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-21] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{438363A8-F486-4C37-834C-4955773CB3D3}] -> msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2022-03-02] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{02AA8B83-49C5-482C-915A-B6824F665CCD}] -> C:\windows\system32\DPCrProv.dll
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\windows\system32\DPCrProv.dll
HKLM\Software\...\Authentication\Credential Providers: [{3ADC7042-51AF-4D0F-BD1D-4D6965A77323}] -> C:\windows\system32\DPCrProv.dll
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\windows\system32\DPCrProv.dll
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\windows\system32\DPCrProv.dll
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\windows\system32\AthCredentialProvider.dll [2013-09-25] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\windows\system32\AthCredentialProvider.dll [2013-09-25] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\windows\system32\DPCrProv.dll
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2012-04-28] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{D75A25CD-0CCA-4C3C-A5E6-94039CC03B72}] -> C:\windows\system32\DPLic.dll [2012-04-28] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk [2016-06-14]
ShortcutTarget: Intuit Data Protect.lnk -> C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe (Intuit, Inc. -> Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk [2016-06-14]
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit, Inc. -> Intuit Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk [2016-06-14]
ShortcutTarget: QuickBooks_Standard_21.lnk -> C:\Program Files (x86)\Intuit\QuickBooks 2013\QBW32.EXE (Intuit, Inc. -> Intuit Inc.)
Startup: C:\Users\Kelly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2021-05-18]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (No File)
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0028B6FA-EA23-4640-B422-0BB168FF3700} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (No File)
Task: {02A19295-BE30-40C8-B55A-884F5EB702F5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {035339AF-BBED-4831-BAA0-1B2222353FC8} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (No File)
Task: {03DA773A-58D1-4575-B82C-3B2EB26081A1} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (No File)
Task: {05F5D082-E3BB-4E49-A527-AA151284A326} - System32\Tasks\{9F2D6405-FF06-4A33-994A-DEF81A6997FD} => C:\windows\system32\pcalua.exe -a C:\Users\Kelly\AppData\Local\Temp\jre-8u231-windows-au.exe -d C:\windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {09E358EC-AA79-4916-999B-BB8D18CE20B0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2013-11-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {0A868CAE-DE33-4594-95F9-8A9558A8E0A0} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe -Daily (No File)
Task: {0E98031C-B4B3-4D11-95B1-257925DD4A24} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {0F9BA745-6DDD-492F-B638-02403F61A9B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-21] (Google Inc -> Google Inc.)
Task: {192DDEFC-0016-477D-934D-B6C0AD3B0033} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [19256 2013-11-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {1B00DE15-231B-4DF2-A6AE-B25B6CAEBD74} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (No File)
Task: {1EF4E318-C861-4EB5-B073-1AA9934338D8} - System32\Tasks\GPUpdate => C:\Program Files (x86)\GetPrivate\gpup.exe (No File) <==== ATTENTION
Task: {2037D0F8-82A9-48A3-8FF4-F0269965D01B} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe -LogonOrUnlock (No File)
Task: {23783777-3430-4F7F-B267-AD4A2EB1C202} - System32\Tasks\AdobeAAMUpdater-1.0-Kelly-HP-Kelly => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {24902F10-1363-48D8-8137-63CCDD73CAAA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {2F54453B-81D4-4624-94D5-9666AA203873} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe (No File)
Task: {3F90FE3C-C043-4646-A599-4746A4B0C3A2} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64416 2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {423B9796-CBCC-4966-85F3-DC6C20D94585} - System32\Tasks\{BB40623F-BB4D-442B-A9DE-37036A9B2725} => C:\windows\system32\pcalua.exe -a "C:\Users\Kelly\Downloads\LMSetup (1).exe" -d C:\Users\Kelly\Downloads
Task: {4475D8A4-3D47-449E-B831-319FC1FCFA81} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\Dependencies\RemEngine.exe [38784 2012-03-21] (Hewlett-Packard Company -> )
Task: {453178F6-86CE-4208-9CB9-63B47296332D} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (No File)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {4D86828E-EB23-49B4-836F-4B191994F09E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {58B513F3-B857-489E-9FD1-C85E137E44B1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {608E865A-25B9-44B9-AEA1-B4552AEEB3D3} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (No File)
Task: {60F8C347-2DBE-413F-9175-834709C8964F} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (No File)
Task: {626395DE-43AF-4DFD-9DAB-E7B3C61322B2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (No File)
Task: {661B38E9-6086-4451-B9CD-BA88F08D9019} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (No File)
Task: {66D10CE2-BA11-4465-BEBF-E09CAFBBEEEB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6BF73B70-8002-4F4A-8B4C-E5C0900DCCDD} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (No File)
Task: {6C56814F-04E2-4C48-9672-273D398306DC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [630584 2014-05-12] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {6C9BE2AB-8EB3-4924-B771-D6A379ADF007} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2013-11-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {6D2AE4A3-EE08-4675-87DA-4632E0591630} - System32\Tasks\{93E95170-68CB-4C61-A104-C3BF1121A339} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{0D9CEE1D-6F81-4821-9D35-2679725BEEAA}\setup.exe" -c -runfromtemp -l0x0409
Task: {7236E3EA-5BC8-474D-AC9E-E7DB98339988} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Tune-up Postponed => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2013-11-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {73B16A6A-F2F1-4293-B033-9BCF8F351A00} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {7B7CF43D-DA9D-4FDD-BE7C-AA72AC093AC7} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (No File)
Task: {7F2E75F1-AA00-4C66-8FA8-E0A18597DC49} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-03] (Dropbox, Inc -> Dropbox, Inc.)
Task: {879F0DDC-79C1-49A8-8958-ECD20B6A6171} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {8D08635F-F22A-4D91-BE1C-70878BC5CA70} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_114_pepper.exe [1456128 2019-01-31] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {9195A815-1A1A-4B82-8C31-61F3C09C4101} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2013-11-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {9521722F-7A55-448F-8BA6-33A9D880FA5D} - System32\Tasks\{67BA625C-85FB-4445-9AC6-A6A7352A6227} => C:\windows\system32\pcalua.exe -a C:\WINDOWS\st6unst.exe -c -n "C:\Program Files (x86)\Re_Td\ST6UNST.LOG"
Task: {9918D93A-028B-4E96-B7A0-02AF495DA15D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {99755DEF-11FF-4772-89E7-932F8643764F} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {9B883743-94C4-4FAF-ACFA-6FE6BE8017E7} - \Microsoft\Windows\Setup\EOSNotify -> No File <==== ATTENTION
Task: {9BC64C35-A8C3-4D8D-B684-29BFCBBBFA55} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (No File)
Task: {A136CEF8-5AB1-4A19-8CAA-C8C1AF57AE27} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {A1954350-D535-4F66-87B5-399D02293142} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {A2DCDFDF-BE80-46F9-A056-C8C3F0DE4116} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {A77F3541-5910-4C5E-8049-C023B9B9BF2C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-21] (Google Inc -> Google Inc.)
Task: {AAE26A66-2BC8-43D8-828B-2B85DC828283} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2715000777-2983012191-3946071522-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214168 2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB45C5EC-1E61-46D9-B013-8A3B45ADA42F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (No File)
Task: {ABDCB1A6-00BE-4A17-A1AC-CF6E4079AB13} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [630584 2014-05-12] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B1B29B20-61BB-4EBB-A6B4-4485CEFA6E3B} - System32\Tasks\Jelbrus Secure Web Task => C:\Program Files (x86)\Jelbrus Secure Web\jswtask.exe (No File) <==== ATTENTION
Task: {B4CCFB1C-4390-4CCF-820C-42C095A668A1} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (No File)
Task: {B50EEBF9-5A73-4D82-9950-99E26BB58558} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (No File)
Task: {B766AC2C-B50C-4C2E-B0F6-2439A1242A8F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {BD7C2875-4D39-4811-9916-C831026632C5} - System32\Tasks\GPUpdateCheck => C:\Program Files (x86)\GetPrivate\gpup.exe (No File) <==== ATTENTION
Task: {C186BEF9-D2CC-4293-8618-45BC64D857CB} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-03] (Dropbox, Inc -> Dropbox, Inc.)
Task: {C76813BB-F846-4172-876A-80AB6C24F3FF} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1775752 2013-08-30] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml"
Task: {C83C10DE-50B2-49A4-8653-1BC5CDC55FED} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (No File)
Task: {CDB75803-208B-4199-AC18-3E194452A9D5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (No File)
Task: {D5F6FE3C-49AA-4EFA-B50D-81A030012A03} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (No File)
Task: {D9F633CB-5FC4-4F33-9573-44C5B6703430} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (No File)
Task: {DBA05909-F004-4148-9C74-B2C03BFC5877} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E21FCE2D-D376-4AF9-B19D-7E4D74030956} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E4C8FA01-2D3D-4E09-A06E-E33AA7342AE7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (No File)
Task: {E53BE587-3C89-4AC6-A8B5-C9092CD23FC9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214168 2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED3229FF-75AC-4E5D-AE1C-DA92BE8B09FB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (No File)
Task: {F47A9BE7-A9CC-4513-8578-F792877D3C60} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2019-01-31] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {F803041E-D256-426D-AC36-A4AFEE675852} - \Microsoft\Windows\Setup\EOSNotify2 -> No File <==== ATTENTION
Task: {FA4CCA62-03A1-42EC-AD77-BB79CBC88550} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
 
Part2
==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.4.1
Tcpip\..\Interfaces\{253D4192-C2BC-43FD-99F9-C1A432DBF989}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{63592EE9-8885-4B64-84FD-E28FD0C20F72}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AB599E02-C7E3-4ECA-8861-CD1B269581CC}: [DhcpNameServer] 192.168.4.1
Tcpip\..\Interfaces\{BB512AB0-D0F8-498C-B7AE-6F9971083A24}: [DhcpNameServer] 192.168.42.129

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Kelly\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-27]
Edge Notifications: Default -> hxxps://app.chime.aws; hxxps://express.adobe.com; hxxps://mail.google.com; hxxps://voice.google.com
Edge Extension: (Google Docs Offline) - C:\Users\Kelly\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-26]

FireFox:
========
FF DefaultProfile: motp6mou.default-1486503942875-1510088252241
FF ProfilePath: C:\Users\Kelly\AppData\Roaming\Mozilla\Firefox\Profiles\motp6mou.default-1486503942875-1510088252241 [2018-08-07]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-05-13] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2015-11-02] [Legacy] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-11-08] (Adobe Systems Incorporated -> )
FF Plugin: @java.com/DTPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\dtplugin\npDeployJava1.dll [2022-05-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\plugin2\npjp2.dll [2022-05-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2013-08-08] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-11-08] (Adobe Systems Incorporated -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-28] (Internal - Intel® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-28] (Internal - Intel® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-07-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2013-08-08] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default [2022-07-26]
CHR Notifications: Default -> hxxps://meet.google.com; hxxps://voice.google.com; hxxps://www.facebook.com
CHR HomePage: Default -> msn.com
CHR StartupUrls: Default -> "hxxp://www.msn.com/"
CHR Extension: (Google Drive) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-02]
CHR Extension: (Convert Files 4 Free) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkmgpdejnjmfpmahlbieploccebhfjho [2021-12-03]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-15]
CHR Extension: (Fir-tree) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbpemgbdaekmlhodlloofbmpkmmpdghd [2018-02-28]
CHR Extension: (Google Docs Offline) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-26]
CHR Extension: (SwagButton) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngocbkfmikdgphklgmmehbjjlfgdemm [2022-07-26]
CHR Extension: (Pinterest Save Button) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2022-03-18]
CHR Extension: (MSN Homepage) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibflkkanbidceofpmolhpijgminhbmnm [2020-09-21]
CHR Extension: (Linkclump) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpjkncokllnfokkgpkobnkbkmelfefj [2020-07-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-27]
CHR Extension: (Gmail) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02]
CHR Profile: C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-27]
CHR Profile: C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-07-27]
CHR Notifications: Profile 1 -> hxxps://meet.google.com; hxxps://voice.google.com
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-07-26]
CHR Extension: (Google Docs Offline) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-27]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-07]
CHR Profile: C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-07-26]
CHR Notifications: Profile 3 -> hxxps://www.facebook.com
CHR HomePage: Profile 3 -> hxxp://www.msn.com/?PC=msnHomeST&OCID=msnHomepage
CHR Extension: (Beach in the Maldives) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ddicfadfciaeikknlkcldgockejldhek [2022-07-26]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-07-26]
CHR Extension: (Google Docs Offline) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-26]
CHR Extension: (Pinterest Save Button) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2022-07-01]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-21]
CHR Profile: C:\Users\Kelly\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-27]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2019-01-31] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [1843392 2015-08-20] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [100424 2022-05-02] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12111288 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-03] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46864 2022-07-16] (Dropbox, Inc -> Dropbox, Inc.)
S4 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [493904 2012-04-28] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 EPSON_PM_RPCV4_05; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE [131072 2011-01-14] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncHelper.exe [3387808 2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
S4 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [477056 2012-11-19] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
S4 HPFSService; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [378488 2012-08-07] (Softex Incorporated -> Hewlett-Packard)
S4 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company -> Hewlett-Packard Company)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S4 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2013-03-27] () [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.141.0703.0002\OneDriveUpdaterService.exe [3827616 2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
S4 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-06-05] (PDF Complete -> PDF Complete Inc)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2016-05-09] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [61440 2013-03-11] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2013-03-11] (Intuit Inc.) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6232176 2022-07-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2013-06-24] (IDT, Inc.) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 DAMDrv; C:\WINDOWS\System32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company -> Hewlett-Packard Company)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [91432 2013-03-27] (McAfee, Inc. -> McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158760 2013-03-27] (McAfee, Inc. -> McAfee, Inc.)
R3 MpKsl35a48443; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9353D550-BD4A-4204-8B5D-E23C6658C9E9}\MpKslDrv.sys [141576 2022-07-27] (Microsoft Windows -> Microsoft Corporation)
R3 SNP2UVC; C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2665496 2014-12-09] (Sonix Technology CO., LTD -> )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [543744 2013-05-13] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-22] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-22] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
U3 idsvc; no ImagePath
 
Part3


==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-07-27 20:03 - 2022-07-27 20:11 - 000050824 _____ C:\Users\Kelly\Downloads\FRST.txt
2022-07-27 19:59 - 2022-07-27 20:08 - 000000000 ____D C:\FRST
2022-07-27 19:57 - 2022-07-27 19:58 - 002369536 _____ (Farbar) C:\Users\Kelly\Downloads\FRST64.exe
2022-07-27 16:59 - 2022-07-27 16:59 - 021930285 _____ C:\Users\Kelly\Downloads\fwdlistingpictures.zip
2022-07-27 16:59 - 2022-07-27 16:59 - 013271342 _____ C:\Users\Kelly\Downloads\fwd (2).zip
2022-07-27 16:59 - 2022-07-27 16:59 - 013271342 _____ C:\Users\Kelly\Downloads\fwd (1).zip
2022-07-27 16:56 - 2022-07-27 17:01 - 000000000 ____D C:\Users\Kelly\Desktop\Lot 1ALV
2022-07-27 16:53 - 2022-07-27 16:53 - 009580721 _____ C:\Users\Kelly\Downloads\fwd.zip
2022-07-27 16:09 - 2022-07-27 16:13 - 000000000 ___RD C:\Users\Kelly\OneDrive
2022-07-27 16:09 - 2022-07-27 16:09 - 000000000 ___HD C:\OneDriveTemp
2022-07-27 15:55 - 2022-07-27 15:55 - 000000000 ____D C:\Users\Kelly\AppData\Local\OneDrive
2022-07-27 14:16 - 2022-07-27 14:16 - 000134119 _____ C:\Users\Kelly\Downloads\note (3).pdf
2022-07-27 14:05 - 2022-07-27 14:05 - 001597086 _____ C:\Users\Kelly\Downloads\Sales Builder.pdf
2022-07-27 12:11 - 2022-07-27 12:11 - 008287524 _____ C:\Users\Kelly\Downloads\contract (1).zip
2022-07-27 12:02 - 2022-07-27 12:02 - 000134119 _____ C:\Users\Kelly\Downloads\note (2).pdf
2022-07-27 12:01 - 2022-07-27 12:01 - 001586336 _____ C:\Users\Kelly\Downloads\Receipted EM Contract (23).pdf
2022-07-27 12:01 - 2022-07-27 12:01 - 001438762 _____ C:\Users\Kelly\Downloads\DOT (1).pdf
2022-07-27 11:32 - 2022-07-27 11:32 - 000134119 _____ C:\Users\Kelly\Downloads\note (1).pdf
2022-07-27 11:31 - 2022-07-27 11:32 - 001438762 _____ C:\Users\Kelly\Downloads\DOT.pdf
2022-07-27 11:11 - 2022-07-27 11:11 - 000001397 _____ C:\Users\Kelly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2022-07-27 10:29 - 2022-07-27 10:29 - 018486245 _____ C:\Users\Kelly\Downloads\newtransaction2000ryancourt.zip
2022-07-27 09:48 - 2022-07-27 09:48 - 000126758 _____ C:\Users\Kelly\Downloads\Alvarado plat.pdf
2022-07-26 17:22 - 2022-07-26 17:22 - 000625818 _____ C:\Users\Kelly\Downloads\Contract 76.pdf
2022-07-26 17:22 - 2022-07-26 17:22 - 000251669 _____ C:\Users\Kelly\Downloads\Contract Adendum .pdf
2022-07-26 16:44 - 2022-07-26 16:44 - 003912007 _____ C:\Users\Kelly\Downloads\REVISION MID WAY ESTATES FINAL PLAT.pdf
2022-07-26 16:44 - 2022-07-26 16:44 - 003912007 _____ C:\Users\Kelly\Downloads\REVISION MID WAY ESTATES FINAL PLAT (1).pdf
2022-07-26 16:38 - 2022-07-26 16:38 - 003031358 _____ C:\Users\Kelly\Downloads\Lot 4 Alvarado - Offer (2).pdf
2022-07-26 16:29 - 2022-07-27 19:38 - 000000000 ____D C:\Users\Kelly\Desktop\Contracts
2022-07-26 16:28 - 2022-07-26 16:28 - 009583722 _____ C:\Users\Kelly\Downloads\Receipted contract - 1008 Justin Drive.pdf
2022-07-26 15:07 - 2022-07-26 15:44 - 013086407 _____ C:\Users\Kelly\Downloads\Lot 9M - 2000 Ryan Ct.pdf
2022-07-26 14:58 - 2022-07-26 15:04 - 006566856 _____ C:\Users\Kelly\Downloads\2000-ryan-ct-weatherford-tx-76085documents (1) (1).pdf
2022-07-26 14:43 - 2022-07-26 14:43 - 000088287 _____ C:\Users\Kelly\Downloads\HUD-NPMA 99-B (7).pdf
2022-07-26 14:34 - 2022-07-26 14:34 - 001382112 _____ C:\Users\Kelly\Downloads\Lot 3AM.pdf
2022-07-26 14:00 - 2022-07-26 14:00 - 000051227 _____ C:\Users\Kelly\AppData\LocalLow\wbkD276.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000015398 _____ C:\Users\Kelly\AppData\LocalLow\wbkD5C7.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000015045 _____ C:\Users\Kelly\AppData\LocalLow\wbkD48C.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000004055 _____ C:\Users\Kelly\AppData\LocalLow\wbkD56A.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000002496 _____ C:\Users\Kelly\AppData\LocalLow\wbkD5FC.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000001877 _____ C:\Users\Kelly\AppData\LocalLow\wbkD61E.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000001875 _____ C:\Users\Kelly\AppData\LocalLow\wbkD5E9.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000000946 _____ C:\Users\Kelly\AppData\LocalLow\wbkD5B4.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000000823 _____ C:\Users\Kelly\AppData\LocalLow\wbkD71B.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000000706 _____ C:\Users\Kelly\AppData\LocalLow\wbkD5A2.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000000468 _____ C:\Users\Kelly\AppData\LocalLow\wbkD57D.tmp
2022-07-26 14:00 - 2022-07-26 14:00 - 000000405 _____ C:\Users\Kelly\AppData\LocalLow\wbkD58F.tmp
2022-07-26 13:57 - 2022-07-26 13:57 - 003149170 _____ C:\Users\Kelly\Downloads\relot3am1008justindr.zip
2022-07-26 13:57 - 2022-07-26 13:57 - 003149170 _____ C:\Users\Kelly\Downloads\relot3am1008justindr (1).zip
2022-07-26 13:18 - 2022-07-26 13:18 - 000661776 _____ C:\Users\Kelly\Downloads\Jumba LLC Alvarado (1).pdf
2022-07-26 13:13 - 2022-07-26 13:13 - 000524721 _____ C:\Users\Kelly\Downloads\utah failure to file.pdf
2022-07-26 11:38 - 2022-07-26 11:40 - 000239646 _____ C:\Users\Kelly\Downloads\Amendment #1 - 11 2 15.pdf
2022-07-26 11:33 - 2022-07-26 11:33 - 000210823 _____ C:\Users\Kelly\Downloads\Amendment #1 - 11 2 15 (1).pdf
2022-07-25 09:39 - 2022-07-25 09:43 - 000173075 _____ C:\Users\Kelly\Downloads\Lot 6ALV BD Receipt.pdf
2022-07-25 08:41 - 2022-07-25 08:41 - 007761512 _____ C:\Users\Kelly\Downloads\2000-ryan-ct-weatherford-tx-76085documents (1).pdf
2022-07-22 08:57 - 2022-07-22 08:57 - 000101068 _____ C:\Users\Kelly\Downloads\ViewPdfForm (8).pdf
2022-07-22 08:57 - 2022-07-22 08:57 - 000101064 _____ C:\Users\Kelly\Downloads\ViewPdfForm (9).pdf
2022-07-22 08:56 - 2022-07-22 08:57 - 000101069 _____ C:\Users\Kelly\Downloads\ViewPdfForm (7).pdf
2022-07-22 08:48 - 2022-07-22 08:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-07-22 08:29 - 2022-07-22 08:29 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-07-21 18:03 - 2022-07-21 18:03 - 010937100 _____ C:\Users\Kelly\Downloads\PDFS-Forms (1).pdf
2022-07-21 18:01 - 2022-07-21 18:01 - 001312834 _____ C:\Users\Kelly\Desktop\ds82.pdf
2022-07-21 16:58 - 2022-07-21 16:58 - 007824389 _____ C:\Users\Kelly\Downloads\eSign Consent Form - Signer 1 (1).zip
2022-07-21 14:39 - 2022-07-21 14:40 - 005999644 _____ C:\Users\Kelly\Downloads\Lot 6 ALV-Signed Contract.pdf
2022-07-21 14:23 - 2022-07-21 14:23 - 003323245 _____ C:\Users\Kelly\Downloads\SIGNED BUILDER DOCS.pdf
2022-07-21 14:21 - 2022-07-21 14:21 - 001810324 _____ C:\Users\Kelly\Downloads\Buyer signed builder docs - 1092 Justin Drive.pdf
2022-07-21 14:14 - 2022-07-21 14:14 - 002515437 _____ C:\Users\Kelly\Downloads\Contract - 4201 CR 401C.pdf
2022-07-21 13:24 - 2022-07-21 13:24 - 000764454 _____ C:\Users\Kelly\Downloads\LOT 26 1085 JUSTIN DR. AMBER MEADOWS.pdf
2022-07-21 13:24 - 2022-07-21 13:24 - 000663008 _____ C:\Users\Kelly\Downloads\SURVEYORS NOTE LOT 26.pdf
2022-07-21 13:24 - 2022-07-21 13:24 - 000490760 _____ C:\Users\Kelly\Downloads\181 - 1085 JUSTIN DR LOT 26 A M.pdf
2022-07-21 12:56 - 2022-07-21 12:56 - 001495994 _____ C:\Users\Kelly\Downloads\reofferlot3am (1).zip
2022-07-21 12:16 - 2022-07-21 12:16 - 010134194 _____ C:\Users\Kelly\Downloads\Fully Receipted contract - Lot 75 - Amber Meadows.pdf
2022-07-21 12:11 - 2022-07-21 12:11 - 010134194 _____ C:\Users\Kelly\Desktop\Fully Receipted contract - Lot 75 - Amber Meadows.pdf
2022-07-21 12:01 - 2022-07-21 12:39 - 010828225 _____ C:\Users\Kelly\Downloads\Lot 73-Offer.pdf
2022-07-21 11:57 - 2022-07-21 11:57 - 010180733 _____ C:\Users\Kelly\Downloads\PDFS-Forms.pdf
2022-07-21 11:38 - 2022-07-21 11:49 - 000186611 _____ C:\Users\Kelly\Downloads\L46AM BD Receipt.pdf
2022-07-21 11:23 - 2022-07-21 11:23 - 001495994 _____ C:\Users\Kelly\Downloads\reofferlot3am.zip
2022-07-21 10:35 - 2022-07-21 10:35 - 000218647 _____ C:\Users\Kelly\Desktop\JA - Paystub.pdf
2022-07-20 15:29 - 2022-07-20 15:32 - 000371389 _____ C:\Users\Kelly\Downloads\Lot 75AM.pdf
2022-07-20 15:27 - 2022-07-20 15:28 - 000292100 _____ C:\Users\Kelly\Downloads\Addendum for Sale of Other Property by Buyer (TXR 1908) (version 10).pdf
2022-07-20 14:11 - 2022-07-20 15:03 - 002213998 _____ C:\Users\Kelly\Downloads\Lot 3 ALV.pdf
2022-07-20 13:47 - 2022-07-20 13:47 - 005083157 _____ C:\Users\Kelly\Downloads\Builder Addendum 2022 7.pdf
2022-07-20 13:47 - 2022-07-20 13:47 - 004462233 _____ C:\Users\Kelly\Downloads\PRefilled TREC 2022 7 (1).pdf
2022-07-20 13:46 - 2022-07-20 13:47 - 004462233 _____ C:\Users\Kelly\Downloads\PRefilled TREC 2022 7.pdf
2022-07-20 13:46 - 2022-07-20 13:47 - 000672179 _____ C:\Users\Kelly\Downloads\Lot 3 alvarado.pdf
2022-07-20 11:33 - 2022-07-20 11:33 - 000061847 _____ C:\Users\Kelly\Downloads\NT - 501.pdf
2022-07-20 11:31 - 2022-07-20 11:31 - 000100968 _____ C:\Users\Kelly\Downloads\MH-507.pdf
2022-07-20 11:30 - 2022-07-20 11:30 - 000100968 _____ C:\Users\Kelly\Downloads\ViewPdfForm (6).pdf
2022-07-20 11:02 - 2022-07-20 11:50 - 005962772 _____ C:\Users\Kelly\Downloads\Lot 6 ALV.pdf
2022-07-20 09:20 - 2022-07-20 09:22 - 000181023 _____ C:\Users\Kelly\Downloads\Lot 9M - EM Release.pdf
2022-07-20 09:18 - 2022-07-20 09:18 - 000741309 _____ C:\Users\Kelly\Downloads\SIGNED release_of_earnest_money__kairos-DigiSign.pdf
2022-07-20 09:18 - 2022-07-20 09:18 - 000741309 _____ C:\Users\Kelly\Downloads\SIGNED release_of_earnest_money__kairos-DigiSign (1).pdf
2022-07-20 09:04 - 2022-07-20 09:05 - 006697390 _____ C:\Users\Kelly\Downloads\fwdpleasereview4documentsfor4130countyroad401c.zip
2022-07-19 13:41 - 2022-07-19 13:41 - 000041204 _____ C:\Users\Kelly\Downloads\EE_s_(Kairos_Homes).xlsx
2022-07-19 13:41 - 2022-07-19 13:41 - 000011939 _____ C:\Users\Kelly\Downloads\FSDD.xlsx
2022-07-19 12:15 - 2022-07-19 12:15 - 002217128 _____ C:\Users\Kelly\Downloads\FHA Builder Docs - Vargas - to be completed (1).pdf
2022-07-19 10:57 - 2022-07-19 10:57 - 002217128 _____ C:\Users\Kelly\Downloads\FHA Builder Docs - Vargas - to be completed.pdf
2022-07-18 19:39 - 2022-07-18 19:39 - 007340837 _____ C:\Users\Kelly\Downloads\contract (1).pdf
2022-07-18 19:38 - 2022-07-18 19:38 - 007340837 _____ C:\Users\Kelly\Downloads\contract.pdf
2022-07-18 13:43 - 2022-07-18 13:43 - 000058974 _____ C:\Users\Kelly\Downloads\Kendall Schobers Contract Invoice #15 3.15.22 (1).pdf
2022-07-18 13:29 - 2022-07-18 13:29 - 000005622 _____ C:\Users\Kelly\Downloads\L24 - NTX.pdf
2022-07-18 13:05 - 2022-07-18 13:05 - 000039862 _____ C:\Users\Kelly\Downloads\ACFrOgDV2mfO8HSgWwg7rFW7LFcAX31OMTbEIPG7KX7odjuAteY7iSgkPQdW1Ywxyb0WZYrlQ2PcoOnld-AuYWPEZEpjs7SfKSVkDM2XAHJpvFxiDYg-B6ddyZBM_dsveuVLC-b5iLz7kmfMBs8V.pdf
2022-07-18 13:01 - 2022-07-18 13:01 - 003424528 _____ C:\Users\Kelly\Downloads\vabuilderdocuments4190countyroad401cchristophers.zip
2022-07-18 12:58 - 2022-07-18 12:58 - 000227146 _____ C:\Users\Kelly\Downloads\Seller closing docs - 1072 Justin Drive (1).eml
2022-07-18 12:52 - 2022-07-18 12:52 - 000227146 _____ C:\Users\Kelly\Downloads\Seller closing docs - 1072 Justin Drive.eml
2022-07-18 12:28 - 2022-07-18 12:36 - 005969271 _____ C:\Users\Kelly\Downloads\Contract Lot 46AM - 3005 Jolene Ct.pdf
2022-07-18 11:46 - 2022-07-18 11:47 - 000146456 _____ C:\Users\Kelly\Downloads\WARRANTIES.Kairos.pdf
2022-07-18 11:31 - 2022-07-18 11:31 - 005352650 _____ C:\Users\Kelly\Downloads\3005 Jolene Court submitted offer.pdf
2022-07-18 11:21 - 2022-07-18 11:21 - 000885878 _____ C:\Users\Kelly\Downloads\_Walker Pre-Approval 449k.pdf
2022-07-18 11:21 - 2022-07-18 11:21 - 000153506 _____ C:\Users\Kelly\Downloads\L26AM Final.pdf
2022-07-18 11:04 - 2022-07-18 11:08 - 000176846 _____ C:\Users\Kelly\Downloads\L5AM BD Receipt.pdf
2022-07-18 10:59 - 2022-07-18 10:59 - 000153602 _____ C:\Users\Kelly\Downloads\L24AM - Final.pdf
2022-07-18 09:50 - 2022-07-18 09:50 - 010157171 _____ C:\Users\Kelly\Downloads\Fully Receipted contract - 1089 Justin Drive.pdf
2022-07-18 09:00 - 2022-07-18 09:00 - 002604422 _____ C:\Users\Kelly\Downloads\Amber Meadows 2 filed deed restrictions.pdf
2022-07-16 20:10 - 2022-07-16 20:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-07-16 20:10 - 2022-07-16 20:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-07-16 20:10 - 2022-07-16 20:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-07-16 20:10 - 2022-07-16 20:10 - 000046864 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-07-15 18:13 - 2022-07-15 18:13 - 000412241 _____ C:\Users\Kelly\Downloads\Lot 4 CR 401C Alvarado, TXPrairielands GCD.pdf
2022-07-15 18:13 - 2022-07-15 18:13 - 000412233 _____ C:\Users\Kelly\Downloads\Lot 2 CR 401C Alvarado, TXPrairielands GCD.pdf
2022-07-15 16:21 - 2022-07-15 16:21 - 000153602 _____ C:\Users\Kelly\Downloads\Lot 24AM - Final Walk.pdf
2022-07-15 15:37 - 2022-07-15 15:37 - 000173172 _____ C:\Users\Kelly\Downloads\1085 Justin Dr_CO.pdf
2022-07-15 15:37 - 2022-07-15 15:37 - 000172359 _____ C:\Users\Kelly\Downloads\1092 Justin Dr_CO.pdf
2022-07-15 15:37 - 2022-07-15 15:37 - 000049837 _____ C:\Users\Kelly\Downloads\Invoice 480_Kairos Homes LLC.pdf
2022-07-15 15:37 - 2022-07-15 15:37 - 000049053 _____ C:\Users\Kelly\Downloads\Invoice 481_Kairos Homes LLC.pdf
2022-07-15 15:37 - 2022-07-15 15:37 - 000039252 _____ C:\Users\Kelly\Downloads\Invoice 480_1092 Justin Dr.pdf
2022-07-13 21:18 - 2022-07-13 21:18 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-13 21:18 - 2022-07-13 21:18 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-13 21:18 - 2022-07-13 21:18 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-13 21:18 - 2022-07-13 21:18 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-13 21:18 - 2022-07-13 21:18 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-13 21:18 - 2022-07-13 21:18 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-13 21:18 - 2022-07-13 21:18 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-13 21:18 - 2022-07-13 21:18 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-13 21:18 - 2022-07-13 21:18 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-13 21:18 - 2022-07-13 21:18 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-13 21:18 - 2022-07-13 21:18 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-13 21:18 - 2022-07-13 21:18 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-13 21:18 - 2022-07-13 21:18 - 000011811 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-07-13 21:17 - 2022-07-13 21:17 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-13 21:17 - 2022-07-13 21:17 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-13 21:16 - 2022-07-13 21:16 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-13 21:16 - 2022-07-13 21:16 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-13 21:15 - 2022-07-13 21:15 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-13 21:15 - 2022-07-13 21:15 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-07-13 20:06 - 2022-07-13 20:06 - 000000000 ___HD C:\$WinREAgent
2022-07-13 17:32 - 2022-07-13 17:32 - 000213219 _____ C:\Users\Kelly\Downloads\Buyer packet- Guardian Title.pdf
2022-07-13 16:24 - 2022-07-13 16:24 - 000000460 _____ C:\Users\Kelly\Downloads\payroll_hrs_summary_2022-05-22_thru_2022-06-04 (3).csv
2022-07-13 15:22 - 2022-07-13 15:22 - 000205952 _____ C:\Users\Kelly\Downloads\Invoice-516 (2).pdf
2022-07-13 14:51 - 2022-07-13 14:51 - 001736196 _____ C:\Users\Kelly\Downloads\BUYER SIGNED BUILDER DOCS (1).pdf
2022-07-13 14:47 - 2022-07-13 14:47 - 000090504 _____ C:\Users\Kelly\Downloads\bb7155d1-5e5e-4481-afe9-ed4716224817.pdf
2022-07-13 13:56 - 2022-07-13 14:21 - 006530997 _____ C:\Users\Kelly\Downloads\Lot 25AM - Offer.pdf
2022-07-13 13:30 - 2022-07-13 13:30 - 004504805 _____ C:\Users\Kelly\Downloads\1092 Justin Dr Insp Report(1).pdf
2022-07-13 13:24 - 2022-07-13 13:24 - 007824389 _____ C:\Users\Kelly\Downloads\eSign Consent Form - Signer 1.zip
2022-07-13 11:41 - 2022-07-13 11:41 - 016010302 _____ C:\Users\Kelly\Downloads\Inspection Report (3).pdf
2022-07-13 11:37 - 2022-07-13 11:37 - 000089899 _____ C:\Users\Kelly\Downloads\C&G Realty E, LLC Wire Instructions[1] (1) (4).pdf
2022-07-13 10:31 - 2022-07-13 10:31 - 003183839 _____ C:\Users\Kelly\Downloads\1081_Justin_Drive____GW_Standard_Home_Inspection-summary.pdf
2022-07-13 10:30 - 2022-07-13 10:30 - 004504805 _____ C:\Users\Kelly\Downloads\1092 Justin Dr Insp Report.pdf
2022-07-13 10:30 - 2022-07-13 10:30 - 004504805 _____ C:\Users\Kelly\Downloads\1092 Justin Dr Insp Report (1).pdf
2022-07-13 10:27 - 2022-07-13 10:27 - 010628790 _____ C:\Users\Kelly\Downloads\Justin Offer.pdf
2022-07-13 10:11 - 2022-07-13 10:11 - 000647420 _____ C:\Users\Kelly\Downloads\Kelly for Kairos Homes (1).pdf
2022-07-13 10:08 - 2022-07-13 10:08 - 000092372 _____ C:\Users\Kelly\Downloads\Signatory Authority-Kairos Homes.pdf
2022-07-13 09:27 - 2022-07-21 19:13 - 019843058 _____ C:\Users\Kelly\Downloads\payroll 6.19.22-7.2.22.pdf
2022-07-13 09:27 - 2022-07-13 09:27 - 019821830 _____ C:\Users\Kelly\Downloads\payroll 6.19.22-7.2.22 (2).pdf
2022-07-13 09:27 - 2022-07-13 09:27 - 019821830 _____ C:\Users\Kelly\Downloads\payroll 6.19.22-7.2.22 (1).pdf
2022-07-13 09:17 - 2022-07-13 09:17 - 007355333 _____ C:\Users\Kelly\Downloads\Receipted contract - 2000 Ryan Ct.pdf
2022-07-13 09:00 - 2022-07-13 09:01 - 024151621 _____ C:\Users\Kelly\Downloads\2000 Ryan Court Lot 9.eml
2022-07-12 17:35 - 2022-07-12 17:35 - 000397395 _____ C:\Users\Kelly\Downloads\wfc notice of nonpayment.pdf
2022-07-12 17:30 - 2022-07-12 17:39 - 000170052 _____ C:\Users\Kelly\Downloads\Lot 3AM - BD Receipt.pdf
2022-07-12 16:04 - 2022-07-12 16:04 - 000153370 _____ C:\Users\Kelly\Downloads\Lot 22AM - Final Walk (1).pdf
2022-07-12 15:55 - 2022-07-12 15:55 - 000031540 _____ C:\Users\Kelly\Downloads\BillPaymentList.pdf
2022-07-12 15:52 - 2022-07-12 15:52 - 000052110 _____ C:\Users\Kelly\Downloads\Total - Check Detail.pdf
2022-07-12 15:52 - 2022-07-12 15:52 - 000052110 _____ C:\Users\Kelly\Downloads\CheckDetail.pdf
2022-07-12 15:49 - 2022-07-12 15:49 - 000002381 _____ C:\Users\Kelly\Downloads\KairosHomes,LLC_TotalPayrollCost_07122022_1549.pdf
2022-07-12 15:47 - 2022-07-12 15:47 - 000079022 _____ C:\Users\Kelly\Downloads\W2 paycheck history 7-8.pdf
2022-07-12 13:34 - 2022-07-12 13:34 - 000282470 _____ C:\Users\Kelly\Downloads\L27AM - HW.pdf
2022-07-12 13:30 - 2022-07-12 13:30 - 000309271 _____ C:\Users\Kelly\Downloads\L26AM - Home Warranty.pdf
2022-07-12 13:29 - 2022-07-12 13:30 - 001736196 _____ C:\Users\Kelly\Downloads\BUYER SIGNED BUILDER DOCS.pdf
2022-07-12 13:22 - 2022-07-12 13:22 - 002035799 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Rd LINCOLN (1).pdf
2022-07-12 10:10 - 2022-07-12 10:10 - 000104556 _____ C:\Users\Kelly\Downloads\L26 TAR.pdf
2022-07-12 10:01 - 2022-07-12 10:01 - 000060416 _____ C:\Users\Kelly\Downloads\releasemoney (1).pdf
2022-07-12 09:59 - 2022-07-12 10:11 - 000212275 _____ C:\Users\Kelly\Downloads\Lot 26 Termination.pdf
2022-07-12 09:59 - 2022-07-12 09:59 - 000060416 _____ C:\Users\Kelly\Downloads\releasemoney.pdf
2022-07-11 18:43 - 2022-07-11 18:43 - 000440345 _____ C:\Users\Kelly\Downloads\lincoln book.pdf
2022-07-11 18:37 - 2022-07-11 18:37 - 001273156 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Elevation Idea #2 (3).pdf
2022-07-11 18:35 - 2022-07-11 18:35 - 001273156 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Elevation Idea #2 (2).pdf
2022-07-11 18:30 - 2022-07-11 18:34 - 037220956 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Rd LINCOLN (1).pptx
2022-07-11 18:04 - 2022-07-11 18:11 - 009547962 _____ C:\Users\Kelly\Downloads\1008 Justin revised (1).pdf
2022-07-11 17:36 - 2022-07-11 18:13 - 014444305 _____ C:\Users\Kelly\Downloads\Lot 3AM - 1008 Justin revised.pdf
2022-07-11 17:02 - 2022-07-11 17:02 - 000286167 _____ C:\Users\Kelly\Downloads\FINISCUT-14 tract layout.pdf
2022-07-11 16:58 - 2022-07-11 16:58 - 000250550 _____ C:\Users\Kelly\Downloads\5589 Finis - 152 ac survey.pdf
2022-07-11 16:43 - 2022-07-11 16:43 - 000153370 _____ C:\Users\Kelly\Downloads\Lot 22AM - Final Walk.pdf
2022-07-11 16:25 - 2022-07-11 16:25 - 003777816 _____ C:\Users\Kelly\Downloads\NTX Waterworks - Lot 22AM.pdf
2022-07-11 16:06 - 2022-07-11 16:07 - 000123986 _____ C:\Users\Kelly\Downloads\ffe9cf4b-a704-40a5-a0f2-bdf439e0121b.pdf
2022-07-11 16:03 - 2022-07-11 16:03 - 002743177 _____ C:\Users\Kelly\Downloads\escrowactive.xlsx
2022-07-11 15:57 - 2022-07-11 15:57 - 000101176 _____ C:\Users\Kelly\Downloads\Peter's Check.pdf
2022-07-11 15:46 - 2022-07-11 15:46 - 000155965 _____ C:\Users\Kelly\Downloads\Reprint W4 Checks 7-8-22.pdf
2022-07-11 15:03 - 2022-07-11 15:03 - 000155963 _____ C:\Users\Kelly\Downloads\ViewPdfForm (5).pdf
2022-07-11 14:44 - 2022-07-11 14:44 - 000232863 _____ C:\Users\Kelly\Desktop\1099 Messed Up - List of Printed Checks.pdf
2022-07-11 14:42 - 2022-07-11 14:42 - 000057142 _____ C:\Users\Kelly\Desktop\Show Reg 1099 Checks.pdf
2022-07-11 14:41 - 2022-07-11 14:41 - 000185302 _____ C:\Users\Kelly\Desktop\List of Printed Checks.pdf
2022-07-11 14:34 - 2022-07-11 14:34 - 000268853 _____ C:\Users\Kelly\Desktop\7-8 1099 Checks.pdf
2022-07-11 14:11 - 2022-07-11 14:11 - 006006785 _____ C:\Users\Kelly\Downloads\1008 Justin revised (3).pdf
2022-07-11 14:11 - 2022-07-11 14:11 - 006006785 _____ C:\Users\Kelly\Downloads\1008 Justin revised (2).pdf
2022-07-11 13:20 - 2022-07-11 13:20 - 000955472 _____ C:\Users\Kelly\Desktop\Employee Checks.pdf
2022-07-11 13:19 - 2022-07-11 13:19 - 000955472 _____ C:\Users\Kelly\Downloads\ViewPdfForm (4).pdf
2022-07-11 13:06 - 2022-07-11 13:06 - 000402740 _____ C:\Users\Kelly\Desktop\1099 Checks.pdf
2022-07-11 08:55 - 2022-07-11 08:55 - 000153850 _____ C:\Users\Kelly\Downloads\Lot 27AM - Final Walk.pdf
2022-07-11 08:03 - 2022-07-11 08:03 - 000132413 _____ C:\Users\Kelly\Downloads\MDH Lot 22AM.pdf
2022-07-11 07:52 - 2022-07-11 07:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2022-07-11 07:50 - 2022-07-11 07:52 - 000000000 ____D C:\Program Files\iTunes
2022-07-11 07:46 - 2022-07-11 07:46 - 000088805 _____ C:\Users\Kelly\Downloads\estimate.pdf
2022-07-11 07:40 - 2022-07-11 07:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple
2022-07-11 07:40 - 2022-07-11 07:40 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2022-07-08 18:37 - 2022-07-08 18:37 - 000001647 _____ C:\Users\Kelly\Downloads\invite (1).ics
2022-07-08 18:37 - 2022-07-08 18:37 - 000001514 _____ C:\Users\Kelly\Downloads\invite.ics
2022-07-08 18:33 - 2022-07-08 18:33 - 000039357 _____ C:\Users\Kelly\Downloads\Invoice 476_1081 Justin Dr (1).pdf
2022-07-08 18:18 - 2022-07-08 18:18 - 000049052 _____ C:\Users\Kelly\Downloads\Invoice 477_1084 Justin Dr (1).pdf
2022-07-08 17:24 - 2022-07-08 17:24 - 000125489 _____ C:\Users\Kelly\Downloads\Lot 27AM - Address (1).pdf
2022-07-08 16:57 - 2022-07-08 17:03 - 005867360 _____ C:\Users\Kelly\Downloads\Lot 3AM - Contract.pdf
2022-07-08 16:51 - 2022-07-08 17:23 - 000125489 _____ C:\Users\Kelly\Downloads\Lot 27AM - Address.pdf
2022-07-08 16:29 - 2022-07-08 16:37 - 000287418 _____ C:\Users\Kelly\Downloads\1008 revised contract.pdf
2022-07-08 16:29 - 2022-07-08 16:36 - 000190379 _____ C:\Users\Kelly\Downloads\Khon preapproval 4.75.pdf
2022-07-08 16:29 - 2022-07-08 16:35 - 004893371 _____ C:\Users\Kelly\Downloads\1008 revised build add.pdf
2022-07-08 16:29 - 2022-07-08 16:35 - 000183428 _____ C:\Users\Kelly\Downloads\1008 revised 3rd party.pdf
2022-07-08 14:51 - 2022-07-08 14:52 - 010215130 _____ C:\Users\Kelly\Downloads\jumbasurveysof610actractsalvarado.zip
2022-07-08 14:51 - 2022-07-08 14:51 - 001016367 _____ C:\Users\Kelly\Downloads\CR 401C 1.2.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000983547 _____ C:\Users\Kelly\Downloads\CR 401C 3.2.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000980279 _____ C:\Users\Kelly\Downloads\CR 401C 4.2.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000968375 _____ C:\Users\Kelly\Downloads\CR 401C 2.2.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000962325 _____ C:\Users\Kelly\Downloads\CR 401C 5.2.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000946046 _____ C:\Users\Kelly\Downloads\CR 401C 6.2.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000783749 _____ C:\Users\Kelly\Downloads\CR 401C 1.1.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000780995 _____ C:\Users\Kelly\Downloads\CR 401C 5.1.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000780548 _____ C:\Users\Kelly\Downloads\CR 401C 4.1.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000779619 _____ C:\Users\Kelly\Downloads\CR 401C 3.1.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000776099 _____ C:\Users\Kelly\Downloads\CR 401C 2.1.pdf
2022-07-08 14:51 - 2022-07-08 14:51 - 000763952 _____ C:\Users\Kelly\Downloads\CR 401C 6.1.pdf
2022-07-08 14:50 - 2022-07-08 14:51 - 000422976 _____ C:\Users\Kelly\Downloads\Alvarado plat.dwg
2022-07-08 11:48 - 2022-07-08 11:48 - 000205953 _____ C:\Users\Kelly\Downloads\Invoice-522 (1).pdf
2022-07-08 11:48 - 2022-07-08 11:48 - 000205952 _____ C:\Users\Kelly\Downloads\Invoice-521.pdf
2022-07-08 11:47 - 2022-07-08 11:47 - 000205952 _____ C:\Users\Kelly\Downloads\Invoice-519 (1).pdf
2022-07-08 11:47 - 2022-07-08 11:47 - 000205951 _____ C:\Users\Kelly\Downloads\Invoice-520 (1).pdf
2022-07-08 11:46 - 2022-07-08 11:46 - 000205952 _____ C:\Users\Kelly\Downloads\Invoice-516 (1).pdf
2022-07-08 11:46 - 2022-07-08 11:46 - 000205950 _____ C:\Users\Kelly\Downloads\Invoice-518 (1).pdf
2022-07-08 11:46 - 2022-07-08 11:46 - 000205949 _____ C:\Users\Kelly\Downloads\Invoice-517 (1).pdf
2022-07-08 11:29 - 2022-07-08 11:29 - 000134119 _____ C:\Users\Kelly\Downloads\note.pdf
2022-07-08 10:59 - 2022-07-21 19:13 - 000013186 _____ C:\Users\Kelly\Desktop\REIMB - KG.xlsx
2022-07-07 17:14 - 2022-07-07 17:14 - 000058972 _____ C:\Users\Kelly\Downloads\Lot 22AM-KS Contract Invoice #17 4.15.22.pdf
2022-07-07 17:09 - 2022-07-07 17:09 - 000058975 _____ C:\Users\Kelly\Downloads\Kendall Schobers Contract Invoice #16 3.31.22.pdf
2022-07-07 16:25 - 2022-07-07 16:25 - 000049423 _____ C:\Users\Kelly\Downloads\Invoice 476_Kairos Homes LLC.pdf
2022-07-07 16:25 - 2022-07-07 16:25 - 000049052 _____ C:\Users\Kelly\Downloads\Invoice 477_1084 Justin Dr.pdf
2022-07-07 16:24 - 2022-07-07 16:24 - 000175649 _____ C:\Users\Kelly\Downloads\1084 Justin Dr_CO.pdf
2022-07-07 16:24 - 2022-07-07 16:24 - 000039357 _____ C:\Users\Kelly\Downloads\Invoice 476_1081 Justin Dr.pdf
2022-07-07 16:23 - 2022-07-07 16:23 - 000173334 _____ C:\Users\Kelly\Downloads\1081 Justin Dr_CO.pdf
2022-07-07 16:03 - 2022-07-07 16:03 - 000348720 _____ C:\Users\Kelly\Downloads\forms (16).pdf
2022-07-07 15:56 - 2022-07-07 15:56 - 000086663 _____ C:\Users\Kelly\Downloads\forms (15).pdf
2022-07-07 15:38 - 2022-07-07 15:38 - 000174773 _____ C:\Users\Kelly\Downloads\Lot 21AM - Inspection Reimbursement (1).pdf
2022-07-07 15:36 - 2022-07-07 15:36 - 000108652 _____ C:\Users\Kelly\Downloads\Wire OUT 317,447.34 XXXXXX3117 PRIORITY SETTLEMENT GROUP OF TEXAS.pdf
2022-07-07 15:31 - 2022-07-07 15:31 - 010237714 _____ C:\Users\Kelly\Downloads\relenderbundlelaniertitlerequestfor1080justindr (1).zip
2022-07-07 15:26 - 2022-07-07 15:27 - 016099144 _____ C:\Users\Kelly\Downloads\REMC-1080 Justin Dr (1).pdf
2022-07-07 11:25 - 2022-07-07 11:25 - 001336117 _____ C:\Users\Kelly\Downloads\eStmt_2022-06-30.pdf
2022-07-07 10:16 - 2022-07-07 10:16 - 000000000 ____D C:\Users\Kelly\Documents\2022_07_07
2022-07-07 10:07 - 2022-07-07 10:07 - 000043321 _____ C:\Users\Kelly\Downloads\kg.Expense Tracking (1) (1).xlsx
2022-07-07 09:10 - 2022-07-07 09:11 - 013646459 _____ C:\Users\Kelly\Downloads\Amber Meadows Ph 4 -911 addresses (1).jpg.pdf
2022-07-07 09:10 - 2022-07-07 09:10 - 000205953 _____ C:\Users\Kelly\Downloads\Invoice-522.pdf
2022-07-07 09:09 - 2022-07-07 09:09 - 000205951 _____ C:\Users\Kelly\Downloads\Invoice-520.pdf
2022-07-07 09:08 - 2022-07-07 09:08 - 000205952 _____ C:\Users\Kelly\Downloads\Invoice-519.pdf
2022-07-07 09:08 - 2022-07-07 09:08 - 000205950 _____ C:\Users\Kelly\Downloads\Invoice-518.pdf
2022-07-07 09:07 - 2022-07-07 09:07 - 000205952 _____ C:\Users\Kelly\Downloads\Invoice-516.pdf
2022-07-07 09:07 - 2022-07-07 09:07 - 000205949 _____ C:\Users\Kelly\Downloads\Invoice-517.pdf
2022-07-06 21:21 - 2022-07-06 21:21 - 001266440 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Elevation Idea #2 (1).pdf
2022-07-06 21:20 - 2022-07-06 21:20 - 001266440 _____ C:\Users\Kelly\Desktop\Lot 9 Midway Elevation Idea #2.pdf
2022-07-06 21:19 - 2022-07-06 21:19 - 004403329 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Exterior - Original.pdf
2022-07-06 21:18 - 2022-07-06 21:18 - 001273156 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Elevation Idea #2(2).pdf
2022-07-06 21:17 - 2022-07-06 21:17 - 004403434 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Exterior (1).pdf
2022-07-06 21:17 - 2022-07-06 21:17 - 001273156 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Elevation Idea #2(1).pdf
2022-07-06 20:59 - 2022-07-06 21:00 - 004403434 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Exterior.pdf
2022-07-06 20:45 - 2022-07-06 20:45 - 002642228 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Elevation(2).pdf
2022-07-06 20:44 - 2022-07-06 21:19 - 001266440 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Elevation Idea #2.pdf
2022-07-06 20:43 - 2022-07-06 20:43 - 002642228 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Elevation(1).pdf
2022-07-06 19:47 - 2022-07-06 19:47 - 000110010 _____ C:\Users\Kelly\Downloads\0678_001 (1).pdf
2022-07-06 19:17 - 2022-07-06 19:17 - 000111055 _____ C:\Users\Kelly\Downloads\1091_001.pdf
2022-07-06 19:17 - 2022-07-06 19:17 - 000109500 _____ C:\Users\Kelly\Downloads\1091_003.pdf
2022-07-06 19:17 - 2022-07-06 19:17 - 000102508 _____ C:\Users\Kelly\Downloads\1091_002.pdf
2022-07-06 17:27 - 2022-07-06 17:27 - 001008325 _____ C:\Users\Kelly\Downloads\Kairos CAA.pdf
2022-07-06 12:06 - 2022-07-06 12:06 - 000911020 _____ C:\Users\Kelly\Downloads\ViewPdfForm (3).pdf
2022-07-06 11:17 - 2022-07-06 11:18 - 003031358 _____ C:\Users\Kelly\Downloads\Lot 4 Alvarado - Offer (1).pdf
2022-07-06 11:09 - 2022-07-06 11:09 - 002463644 _____ C:\Users\Kelly\Downloads\Lot 2 Alvarado - Offer (2).pdf
2022-07-06 10:52 - 2022-07-06 10:53 - 025685107 _____ C:\Users\Kelly\Downloads\Lot 9 Midway Rd LINCOLN(1).pptx
2022-07-06 10:47 - 2022-07-06 10:47 - 000011031 _____ C:\Users\Kelly\Downloads\approvals_history_report_2022-06-19_thru_2022-07-02.csv
2022-07-06 10:13 - 2022-07-06 10:13 - 009932831 _____ C:\Users\Kelly\Downloads\Lot 27AM - TBD (3).pdf
2022-07-06 10:12 - 2022-07-06 10:12 - 009932831 _____ C:\Users\Kelly\Downloads\Lot 27AM - TBD (2).pdf
2022-07-06 10:10 - 2022-07-06 10:10 - 000314445 _____ C:\Users\Kelly\Downloads\Termination and ROEM - Lot 27_Hannon (1).pdf
2022-07-06 10:07 - 2022-07-06 10:08 - 009932831 _____ C:\Users\Kelly\Downloads\Lot 27AM - TBD (1).pdf
2022-07-06 09:55 - 2022-07-06 09:55 - 000661776 _____ C:\Users\Kelly\Downloads\Jumba LLC Alvarado.pdf
2022-07-06 09:47 - 2022-07-06 09:47 - 011345197 _____ C:\Users\Kelly\Downloads\Lot_70_- Executed (2).pdf
2022-07-06 09:47 - 2022-07-06 09:47 - 011345197 _____ C:\Users\Kelly\Downloads\Lot_70_- Executed (1).pdf
2022-07-06 09:47 - 2022-07-06 09:47 - 000381072 _____ C:\Users\Kelly\Downloads\Lot_22AM_-_Borchardt_Amendment[13863] (1) (3).pdf
2022-07-06 09:47 - 2022-07-06 09:47 - 000381072 _____ C:\Users\Kelly\Downloads\Lot_22AM_-_Borchardt_Amendment[13863] (1) (2).pdf
2022-07-06 08:39 - 2022-07-06 08:42 - 000174637 _____ C:\Users\Kelly\Downloads\Lot 75AM - BD Receipt.pdf
2022-07-05 17:13 - 2022-07-05 17:13 - 011986301 _____ C:\Users\Kelly\Downloads\Lot 75AM - Executed Contract (version 2).pdf
2022-07-05 14:52 - 2022-07-05 14:56 - 000178371 _____ C:\Users\Kelly\Downloads\L4 - BD Receipt.pdf
2022-07-05 12:46 - 2022-07-05 13:26 - 011973703 _____ C:\Users\Kelly\Downloads\Offer Lot 75 Amber Meadows.pdf
2022-07-05 12:21 - 2022-07-05 12:21 - 002826668 _____ C:\Users\Kelly\Downloads\ADP Documents.pdf
2022-07-05 12:07 - 2022-07-05 12:12 - 000521465 _____ C:\Users\Kelly\Downloads\Lot 11 - Seller CD Redacted.pdf
2022-07-05 12:07 - 2022-07-05 12:11 - 000479762 _____ C:\Users\Kelly\Downloads\Lot 18 - Seller CD Redacted.pdf
2022-07-05 11:58 - 2022-07-05 11:59 - 000381072 _____ C:\Users\Kelly\Downloads\Lot_22AM_-_Borchardt_Amendment[13863] (1) (1).pdf
2022-07-05 09:03 - 2022-07-05 09:03 - 001360700 _____ C:\Users\Kelly\Downloads\kristal viera unemploy app (2).pdf
2022-07-05 07:44 - 2022-07-05 07:44 - 011965432 _____ C:\Users\Kelly\Downloads\Newbery Wright Lot 75 Contrat (1).pdf
2022-07-05 07:43 - 2022-07-05 07:44 - 011965432 _____ C:\Users\Kelly\Downloads\Newbery Wright Lot 75 Contrat.pdf
2022-07-01 17:19 - 2022-07-01 17:19 - 002588659 _____ C:\Users\Kelly\Downloads\Lot 2 Alvarado - VA Docs.pdf
2022-07-01 17:09 - 2022-07-01 17:09 - 005572965 _____ C:\Users\Kelly\Downloads\Jumba LLC.zip
2022-07-01 16:16 - 2022-07-01 16:39 - 006175098 _____ C:\Users\Kelly\Downloads\Lot 6 Alvarado - Revised Offer.pdf
2022-07-01 15:39 - 2022-07-01 15:39 - 000223051 _____ C:\Users\Kelly\Downloads\resolution for Brian Frazier Jumba.pdf
2022-07-01 15:13 - 2022-07-01 15:13 - 000942743 _____ C:\Users\Kelly\Downloads\Lot 2 Alvarado - 3rd Party.pdf
2022-07-01 14:54 - 2022-07-01 14:54 - 000263192 _____ C:\Users\Kelly\Downloads\Third Pary Financing Lot 2 Alvarado.pdf
2022-07-01 14:33 - 2022-07-01 14:33 - 000910869 _____ C:\Users\Kelly\Downloads\ViewPdfForm (2).pdf
2022-07-01 14:11 - 2022-07-01 16:39 - 005663786 _____ C:\Users\Kelly\Downloads\TXR - New Home Contract (Incomplete Construction) - Signed [1] - Signed.pdf
2022-07-01 14:11 - 2022-07-01 14:11 - 005111946 _____ C:\Users\Kelly\Downloads\Lot 6 BA.pdf
2022-07-01 13:37 - 2022-07-01 13:37 - 001360700 _____ C:\Users\Kelly\Downloads\kristal viera unemploy app (1).pdf
2022-07-01 13:35 - 2022-07-01 13:35 - 000719436 _____ C:\Users\Kelly\Downloads\LOT 24 R2 1092 JUSTIN DR AMBER MEADOWS.pdf
2022-07-01 12:48 - 2022-07-01 12:48 - 000320935 _____ C:\Users\Kelly\Downloads\Operating Agmt (3) (2).pdf
2022-07-01 12:48 - 2022-07-01 12:48 - 000138664 _____ C:\Users\Kelly\Downloads\872053900003-11239777 (2) (1).zip
2022-07-01 12:00 - 2022-07-01 12:00 - 000021105 _____ C:\Users\Kelly\Downloads\stmt (1).csv
2022-07-01 09:58 - 2022-07-01 09:58 - 000000165 _____ C:\Users\Kelly\Downloads\Gay Storms (3).vcf
2022-07-01 09:53 - 2022-07-01 09:53 - 000000165 _____ C:\Users\Kelly\Downloads\Gay Storms (2).vcf
2022-07-01 09:10 - 2022-07-01 09:10 - 000045729 _____ C:\Users\Kelly\Downloads\kg.Expense Tracking (1).xlsx
2022-07-01 08:58 - 2022-07-01 08:58 - 000077562 _____ C:\Users\Kelly\Downloads\_Kendall Schobers Contract Invoice #15 3.15.22.pdf
2022-07-01 08:58 - 2022-07-01 08:58 - 000077562 _____ C:\Users\Kelly\Downloads\_Kendall Schobers Contract Invoice #15 3.15.22 (1).pdf
2022-07-01 08:55 - 2022-07-01 08:55 - 000058974 _____ C:\Users\Kelly\Downloads\Kendall Schobers Contract Invoice #15 3.15.22.pdf
2022-07-01 07:26 - 2022-07-01 07:26 - 000719698 _____ C:\Users\Kelly\Downloads\LOT 24 1092 JUSTIN DR. AMBER MEADOWS.pdf
2022-07-01 07:26 - 2022-07-01 07:26 - 000719698 _____ C:\Users\Kelly\Downloads\LOT 24 1092 JUSTIN DR. AMBER MEADOWS (1).pdf
2022-06-30 19:55 - 2022-06-30 19:55 - 000121074 _____ C:\Users\Kelly\Downloads\1072_justin_drive__date_change_-DigiSign.pdf
2022-06-30 19:51 - 2022-06-30 19:51 - 000000000 ____D C:\Users\Kelly\.ms-ad
2022-06-30 19:37 - 2022-06-30 19:37 - 000153585 _____ C:\Users\Kelly\Downloads\Lot 19AM - Final Walk.pdf
2022-06-30 19:31 - 2022-06-30 19:31 - 001449046 _____ C:\Users\Kelly\Downloads\SKM_C65822063006030 (1).pdf
2022-06-30 19:30 - 2022-06-30 19:30 - 001449046 _____ C:\Users\Kelly\Downloads\SKM_C65822063006030.pdf
2022-06-30 17:44 - 2022-06-30 17:44 - 003111347 _____ C:\Users\Kelly\Downloads\Lot 22AM - BD.pdf
2022-06-30 17:35 - 2022-06-30 17:45 - 001429239 _____ C:\Users\Kelly\Downloads\Lot 22AM - BD Binder.pdf
2022-06-30 17:35 - 2022-06-30 17:35 - 000214955 _____ C:\Users\Kelly\Downloads\eStmt_2022-04-29.pdf
2022-06-30 15:50 - 2022-06-30 15:50 - 000341057 _____ C:\Users\Kelly\Downloads\2022 - North American Paving, Inc. Wiring Instructions - 04-07-2022 (2).pdf
2022-06-30 15:40 - 2022-06-30 15:40 - 000341057 _____ C:\Users\Kelly\Downloads\2022 - North American Paving, Inc. Wiring Instructions - 04-07-2022 (1).pdf
2022-06-30 15:39 - 2022-06-30 15:40 - 000341057 _____ C:\Users\Kelly\Downloads\2022 - North American Paving, Inc. Wiring Instructions - 04-07-2022.pdf
2022-06-30 15:19 - 2022-06-30 15:47 - 000231304 _____ C:\Users\Kelly\Downloads\rev.2nd Amendment - Lot 20AM.pdf
2022-06-30 14:04 - 2022-06-30 14:04 - 000053282 _____ C:\Users\Kelly\Downloads\Vista Homes-Bishop Engineering Inv. 6619.pdf
2022-06-30 13:13 - 2022-06-30 13:17 - 000154338 _____ C:\Users\Kelly\Downloads\2nd Amendment - Lot 20AM.pdf
2022-06-30 09:40 - 2022-06-30 09:40 - 014673288 _____ C:\Users\Kelly\Downloads\pay period 5.22.22 - 6.4.22.pdf
2022-06-30 08:34 - 2022-06-30 08:34 - 000258455 _____ C:\Users\Kelly\Downloads\Cleared Checks 6.27 (2).pdf
2022-06-30 08:34 - 2022-06-30 08:34 - 000258455 _____ C:\Users\Kelly\Downloads\Cleared Checks 6.27 (1).pdf
2022-06-30 07:22 - 2022-06-30 07:22 - 000056174 _____ C:\Users\Kelly\Desktop\stmt.pdf
2022-06-30 07:13 - 2022-06-30 07:13 - 000020456 _____ C:\Users\Kelly\Downloads\stmt.csv
2022-06-30 07:10 - 2022-06-30 07:10 - 000036489 _____ C:\Users\Kelly\Downloads\stmt.txt
2022-06-30 00:44 - 2022-06-30 00:45 - 000347802 _____ C:\Users\Kelly\Downloads\forms (14).pdf
2022-06-29 15:35 - 2022-06-29 15:35 - 000174475 _____ C:\Users\Kelly\Downloads\1072 Justin Dr_CO.pdf
2022-06-29 13:20 - 2022-06-29 13:20 - 000038229 _____ C:\Users\Kelly\Downloads\kg.Expense Tracking.xlsx
2022-06-29 11:18 - 2022-06-29 11:18 - 000161742 _____ C:\Users\Kelly\Downloads\Change Log.pdf
2022-06-29 10:41 - 2022-06-29 11:09 - 000243205 _____ C:\Users\Kelly\Downloads\v6kg.Contract addendum 2022.pdf
2022-06-29 09:55 - 2022-06-29 09:55 - 001574615 _____ C:\Users\Kelly\Downloads\1084justindr_lot22borchardt.zip
2022-06-29 09:30 - 2022-06-29 09:30 - 000950211 _____ C:\Users\Kelly\Downloads\Well Water Lab Results_1080_1084_1088 Justin (1).pdf
2022-06-29 08:01 - 2022-06-29 08:01 - 000348712 _____ C:\Users\Kelly\Downloads\forms (13).pdf
2022-06-29 07:47 - 2022-06-29 07:47 - 000004437 _____ C:\Users\Kelly\Downloads\hours_by_team_member_2022-06-19_thru_2022-07-02 (1).csv
2022-06-29 07:46 - 2022-06-29 07:46 - 000006208 _____ C:\Users\Kelly\Downloads\hours_by_team_member_2022-06-19_thru_2022-07-02.csv
2022-06-29 07:44 - 2022-06-29 07:44 - 000000796 _____ C:\Users\Kelly\Downloads\hours_by_group_2022-06-19_thru_2022-07-02 (2).csv
2022-06-29 07:44 - 2022-06-29 07:44 - 000000386 _____ C:\Users\Kelly\Downloads\hours_by_group_2022-06-19_thru_2022-07-02 (3).csv
2022-06-29 07:43 - 2022-06-29 07:43 - 000000336 _____ C:\Users\Kelly\Downloads\hours_by_group_2022-06-19_thru_2022-07-02 (1).csv
2022-06-29 07:43 - 2022-06-29 07:43 - 000000317 _____ C:\Users\Kelly\Downloads\hours_by_group_2022-06-19_thru_2022-07-02.csv
2022-06-29 07:40 - 2022-06-29 07:40 - 000179783 _____ C:\Users\Kelly\Downloads\timesheet_log_2022-06-19_thru_2022-07-02.csv
2022-06-28 13:24 - 2022-06-28 13:24 - 001360700 _____ C:\Users\Kelly\Downloads\kristal viera unemploy app.pdf
2022-06-28 12:51 - 2022-06-28 13:16 - 000000000 ____D C:\Users\Kelly\Documents\2022_06_28
2022-06-28 12:51 - 2022-06-28 12:51 - 000258455 _____ C:\Users\Kelly\Downloads\Cleared Checks 6.27.pdf
2022-06-28 12:14 - 2022-06-28 12:14 - 002679666 _____ C:\Users\Kelly\Downloads\Lot 4 Alvarado - Offer.pdf
2022-06-28 12:08 - 2022-06-28 12:08 - 002463644 _____ C:\Users\Kelly\Downloads\Lot 2 Alvarado - Offer (1).pdf
2022-06-28 12:00 - 2022-06-28 12:00 - 002146855 _____ C:\Users\Kelly\Downloads\Lot 4 - Executed Contract.pdf
2022-06-28 11:50 - 2022-06-28 11:50 - 000123779 _____ C:\Users\Kelly\Downloads\NTX Waterworks - L19AM.pdf
2022-06-28 11:49 - 2022-06-28 11:50 - 000123779 _____ C:\Users\Kelly\Downloads\Invoice 1628.pdf
2022-06-28 11:18 - 2022-06-28 11:18 - 000013644 _____ C:\Users\Kelly\Downloads\Checks and Cash 6-27-22.xlsx
2022-06-28 09:44 - 2022-06-28 09:44 - 000348937 _____ C:\Users\Kelly\Downloads\forms (12).pdf
2022-06-28 09:42 - 2022-06-28 09:42 - 000348937 _____ C:\Users\Kelly\Downloads\forms (11).pdf
2022-06-28 09:35 - 2022-06-28 09:35 - 000950211 _____ C:\Users\Kelly\Downloads\Well Water Lab Results_1080_1084_1088 Justin.pdf
2022-06-27 21:33 - 2022-06-27 21:33 - 005541880 _____ C:\Users\Kelly\Downloads\AWS - NTX Section Report.pdf
2022-06-27 21:29 - 2022-06-27 21:29 - 000152171 _____ C:\Users\Kelly\Downloads\Lot 20AM - Punchlist Items.pdf
2022-06-27 21:24 - 2022-06-27 21:24 - 000000000 ____D C:\Users\Kelly\Documents\2022_06_27
2022-06-27 18:55 - 2022-06-27 18:55 - 000347750 _____ C:\Users\Kelly\Downloads\forms (10).pdf
2022-06-27 18:47 - 2022-06-27 18:47 - 000348712 _____ C:\Users\Kelly\Downloads\forms (9).pdf
2022-06-27 18:34 - 2022-06-27 18:34 - 000550710 _____ C:\Users\Kelly\Downloads\reexternalremissinginvoices (1).zip
2022-06-27 18:26 - 2022-06-27 18:26 - 002084802 _____ C:\Users\Kelly\Downloads\CORE 1.2.10 Sample Warranty (6).pdf
2022-06-27 18:26 - 2022-06-27 18:26 - 001701180 _____ C:\Users\Kelly\Downloads\Maverick About Your Warranty (7).pdf
2022-06-27 18:00 - 2022-06-27 18:00 - 000144026 _____ C:\Users\Kelly\Downloads\L2ALV.pdf
2022-06-27 17:57 - 2022-06-27 18:01 - 000173925 _____ C:\Users\Kelly\Downloads\4240 CR401C - Builder Deposit Receipt.pdf
2022-06-27 17:34 - 2022-06-27 17:34 - 006422260 _____ C:\Users\Kelly\Downloads\Scan.pdf
2022-06-27 17:34 - 2022-06-27 17:34 - 006422260 _____ C:\Users\Kelly\Downloads\Scan (2).pdf
2022-06-27 17:34 - 2022-06-27 17:34 - 006422260 _____ C:\Users\Kelly\Downloads\Scan (1).pdf
2022-06-27 17:34 - 2022-06-27 17:34 - 000076155 _____ C:\Users\Kelly\Downloads\LSR Equipment Enterprises Wiring Instructions.pdf
2022-06-27 16:42 - 2022-06-27 16:42 - 000151847 _____ C:\Users\Kelly\Downloads\Preliminary Seller's Closing Disclosure - 2022-06-27T162559.817.pdf
2022-06-27 16:41 - 2022-06-27 16:41 - 000323532 _____ C:\Users\Kelly\Downloads\Lot 20AM - Amendment.pdf
2022-06-27 14:37 - 2022-06-27 14:37 - 000481755 _____ C:\Users\Kelly\Downloads\Lanier_2022.06.24_Buyer_Walk_Thru_0001.pdf
2022-06-27 14:36 - 2022-06-27 14:36 - 001287871 _____ C:\Users\Kelly\Downloads\Lanier_2022.06.24_Warranty_Items_0001.pdf
2022-06-27 14:33 - 2022-06-27 14:34 - 010237714 _____ C:\Users\Kelly\Downloads\relenderbundlelaniertitlerequestfor1080justindr.zip
2022-06-27 14:04 - 2022-06-27 14:04 - 000642668 _____ C:\Users\Kelly\Downloads\Amber Meadows 6 Final Plat.pdf.pdf
2022-06-27 09:49 - 2022-06-27 09:51 - 000302557 _____ C:\Users\Kelly\Downloads\Kairos Homes - SERVICE PROPOSAL - 2022 - 06 26 2022_encrypted_.pdf
 
Part 4

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-07-27 20:13 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-27 19:57 - 2014-11-09 18:03 - 000000000 ____D C:\Program Files (x86)\Google
2022-07-27 19:54 - 2013-04-11 17:35 - 000002259 _____ C:\WINDOWS\epplauncher.mif
2022-07-27 18:12 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-27 16:09 - 2022-01-03 12:56 - 000000000 ____D C:\Users\Kelly
2022-07-27 16:01 - 2022-05-22 22:29 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-07-27 16:01 - 2022-05-20 18:23 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-07-27 16:01 - 2022-05-20 18:22 - 000002132 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-07-27 16:01 - 2022-01-04 01:23 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2715000777-2983012191-3946071522-1001
2022-07-27 14:01 - 2022-01-03 12:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-27 10:50 - 2022-06-02 08:19 - 000000000 ____D C:\Users\Kelly\AppData\LocalLow\webviewdata
2022-07-27 02:00 - 2013-06-27 14:08 - 000000000 ____D C:\Users\Kelly\AppData\Local\Adobe
2022-07-27 01:45 - 2022-01-03 13:57 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-07-27 01:45 - 2022-01-03 13:57 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d800cd13bdf2e5
2022-07-26 19:17 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-26 19:17 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-26 17:06 - 2022-01-03 16:18 - 000000000 ____D C:\Users\Kelly\AppData\Local\Dropbox
2022-07-26 17:05 - 2022-06-08 20:56 - 000000000 ____D C:\Users\Kelly\AppData\Roaming\DropboxElectron
2022-07-26 17:01 - 2022-01-06 12:57 - 000000000 __SHD C:\Users\Kelly\IntelGraphicsProfiles
2022-07-26 17:00 - 2022-01-03 13:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-26 17:00 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-07-26 16:59 - 2019-12-07 04:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-07-26 13:24 - 2022-01-03 13:25 - 000000000 ____D C:\Users\Kelly\AppData\Local\Packages
2022-07-25 09:29 - 2022-01-03 13:26 - 000000000 ___RD C:\Users\Kelly\3D Objects
2022-07-25 08:49 - 2022-01-03 12:49 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-25 08:35 - 2022-04-30 20:55 - 000000000 ____D C:\Users\Kelly\AppData\Roaming\Messenger
2022-07-25 08:35 - 2022-04-30 20:55 - 000000000 ____D C:\Users\Kelly\AppData\Local\Messenger
2022-07-22 08:53 - 2022-01-03 16:18 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-07-21 19:31 - 2022-05-20 17:40 - 000000000 ____D C:\Program Files\Microsoft Office
2022-07-21 19:18 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-21 19:16 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-07-21 19:02 - 2016-09-21 14:19 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-07-13 22:14 - 2022-01-03 12:55 - 000935286 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-13 22:07 - 2022-01-03 12:43 - 000646448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-07-13 22:03 - 2019-12-07 04:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-07-13 22:03 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-07-13 21:15 - 2022-01-03 12:47 - 003010560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-07-13 19:45 - 2013-08-15 08:03 - 146546848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-07-13 19:45 - 2013-08-15 08:03 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-07-13 02:43 - 2015-11-24 08:28 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-07-11 18:47 - 2013-11-11 11:05 - 000000000 ____D C:\Users\Kelly\Desktop\KG-MISC
2022-07-11 07:40 - 2013-07-08 11:50 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2022-07-08 18:38 - 2022-01-03 13:52 - 000000000 ____D C:\Users\Kelly\AppData\Local\Comms
2022-07-07 11:42 - 2022-01-03 14:34 - 000000000 ____D C:\Users\Kelly\Desktop\WORK

==================== Files in the root of some directories ========

2013-12-30 08:42 - 2013-12-30 08:42 - 000000093 _____ () C:\Users\Kelly\AppData\Roaming\ARCompanion.log
2015-11-24 10:15 - 2015-11-24 11:15 - 000023007 _____ () C:\Users\Kelly\AppData\Roaming\Comma Separated Values.ADR
2014-11-06 20:27 - 2014-11-06 20:40 - 000016960 ____T (Un4seen Developments) C:\Users\Kelly\AppData\Roaming\Microsoft\1eaadjc.dll
2014-11-06 20:27 - 2014-11-06 20:40 - 000018724 ____T () C:\Users\Kelly\AppData\Roaming\Microsoft\bass.dll
2014-11-06 20:27 - 2014-11-06 20:40 - 000321536 ____T () C:\Users\Kelly\AppData\Roaming\Microsoft\engine_vx.dll
2014-11-06 20:27 - 2014-11-06 20:40 - 000014392 ____T (Un4seen Developments) C:\Users\Kelly\AppData\Roaming\Microsoft\kfgresk.dll
2014-11-06 20:27 - 2014-11-06 20:40 - 000014456 ____T () C:\Users\Kelly\AppData\Roaming\Microsoft\mjcriu.dll
2014-11-06 20:27 - 2014-11-06 20:40 - 000010816 ____T (Un4seen Developments) C:\Users\Kelly\AppData\Roaming\Microsoft\peaadje.dll
2014-11-06 20:27 - 2014-11-06 20:40 - 000028760 ____T (:) JOBnik! :) [Arthur Aminov, ISRAEL]) C:\Users\Kelly\AppData\Roaming\Microsoft\qwadjb.dll
2014-11-06 20:27 - 2014-11-06 20:40 - 000015424 ____T (Un4seen Developments) C:\Users\Kelly\AppData\Roaming\Microsoft\rsaadjd.dll
2014-11-06 20:27 - 2014-11-06 20:40 - 000098360 ____T (Un4seen Developments) C:\Users\Kelly\AppData\Roaming\Microsoft\~DFK1bee3229.tmp
2021-05-18 11:59 - 2021-05-18 11:59 - 000007601 _____ () C:\Users\Kelly\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
 
Addition.txt Part1

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-07-2022
Ran by Kelly (27-07-2022 20:24:59)
Running from C:\Users\Kelly\Downloads
Microsoft Windows 10 Pro Version 21H2 19044.1826 (X64) (2022-01-03 18:18:44)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2715000777-2983012191-3946071522-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2715000777-2983012191-3946071522-503 - Limited - Disabled)
Guest (S-1-5-21-2715000777-2983012191-3946071522-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2715000777-2983012191-3946071522-1003 - Limited - Enabled)
Kelly (S-1-5-21-2715000777-2983012191-3946071522-1001 - Administrator - Enabled) => C:\Users\Kelly
WDAGUtilityAccount (S-1-5-21-2715000777-2983012191-3946071522-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{BE930E38-7BB3-45B6-85B2-5251F374F844}) (Version: 6.2.2 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 22.001.20169 - Adobe Systems Incorporated)
Adobe Acrobat X Pro (HKLM-x32\...\{AC76BA86-1033-0000-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\{739A853C-D71F-404B-9E6A-012D3918ED57}) (Version: 27.0.0.124 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\{A127C3C0-055E-38CF-B38F-1E85F8BBBFFE}) (Version: 3.5.23 - Adobe Systems Incorporated.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Connect 9 Add-in (HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\Adobe Connect 9 Add-in) (Version: 11,2,369,0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.1.0.213 - Adobe Systems Incorporated)
Adobe Digital Editions 2.0 (HKLM-x32\...\Adobe Digital Editions 2.0) (Version: 2.0 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\{E15BC10F-04AA-0AFD-A6C9-476730195F8B}) (Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated)
Adobe Photoshop Elements 10 (HKLM-x32\...\Adobe Photoshop Elements 10) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Photoshop.com Inspiration Browser (HKLM-x32\...\{EC8282AB-48DD-91D2-7387-01CD6E100A5D}) (Version: 3.07 - Adobe Systems Incorporated) Hidden
Adobe Photoshop.com Inspiration Browser (HKLM-x32\...\PhotoshopdotcomInspirationBrowser.4C35C4D325D350FE0114230CBADCA2DDD0AC8D25.1) (Version: 3.07 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Amazon Chime (HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\{D9D58C68-544A-4C36-B6B4-62D0F9505765}_is1) (Version: 4.39.10374.1 - Amazon.com, Inc.)
Amazon Music (HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\Amazon Amazon Music) (Version: 6.5.1.1332 - Amazon Services LLC)
AMD Accelerated Video Transcoding (HKLM\...\{44504FDC-082D-192B-5F4C-256F0F63D891}) (Version: 2.00.0002 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (HKLM\...\{503F672D-6C84-448A-8F8F-4BC35AC83441}) (Version: 10.0.898.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{8642397F-CF08-6B30-A477-A039BBAA511E}) (Version: 3.0.868.0 - Advanced Micro Devices, Inc.)
AMD Media Foundation Decoders (HKLM\...\{3BD05D02-0D76-65F2-FAF7-AD4DC6D77668}) (Version: 1.0.70329.2315 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{9F7041CB-8398-4691-B8CB-0D52273BB3D9}) (Version: 7.4 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{6E7DF4EE-1976-4215-9D81-755AFC95687D}) (Version: 7.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2B3CA448-5266-480F-85FA-2FCCB3C8712C}) (Version: 15.6.0.32 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BrLauncher (HKLM-x32\...\{C661197A-6B93-4E37-9E3F-2A1DFCD64234}) (Version: 1.1.15.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden
Brother PCFax Driver (HKLM-x32\...\{56BA05BD-7A67-4EF8-85A7-8C6528AEE2AC}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Driver (HKLM-x32\...\{AD50A330-D776-45E8-80BA-54775AD9A011}) (Version: 1.9.0.0 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{01DC22B4-64E1-4E66-92EA-84C8E5912E0C}) (Version: 1.0.49.1 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{35EAA5D9-0E75-46CC-BE6E-A6C7907DEC2F}) (Version: 1.0.11.0 - Brother Industries Ltd.) Hidden
BUFFALO NAS Navigator2 (HKLM-x32\...\UN060501) (Version: - )
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\{8A16FF47-A5FC-49A8-96B5-31180D317059}) (Version: 1.2.11 - CANON INC.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\Canon Laser Printer/Scanner/Fax Extended Survey Program) (Version: 1.2.11.10002 - CANON INC.)
Canon MF Scan Utility (HKLM-x32\...\Canon_MF_Scan_Utility) (Version: 1.0.0.0 - CANON INC.)
Canon MF720C Series (HKLM\...\{FA8CBEFA-A965-4C8C-828D-373BF361F372}) (Version: 4.8.0.0 - CANON INC.)
Catalyst Control Center - Branding (HKLM-x32\...\{45160C56-61F6-468D-A5B0-9FAE2C3E68D6}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
ControlCenter4 (HKLM-x32\...\{7F2B795B-7771-44FC-9885-AA414F996976}) (Version: 4.2.461.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{1BAE50D4-5F2A-4E34-BD81-B4555109F7C2}) (Version: 4.2.3.1 - Brother Insutries Ltd.) Hidden
CutePDF Writer (HKLM\...\CutePDF Writer Installation) (Version: 4.0 - Acro Software Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Device Access Manager for HP ProtectTools (HKLM\...\{55B52830-024A-443E-AF61-61E1E71AFA1B}) (Version: 7.1.2.0 - Hewlett-Packard Company)
Drive Encryption For HP ProtectTools (HKLM\...\{27F1E086-5691-4EB8-8BA1-5CBA87D67EB5}) (Version: 7.0.41.36204 - Hewlett-Packard Company)
Dropbox (HKLM-x32\...\Dropbox) (Version: 153.4.3932 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.583.1 - Dropbox, Inc.) Hidden
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version: - )
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.46.00 - SEIKO EPSON CORPORATION)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON WF-7510 Series Printer Uninstall (HKLM\...\EPSON WF-7510 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
Face Recognition for HP ProtectTools (HKLM\...\{D3A775F2-2674-4452-8D80-1FC1446052EE}) (Version: 7.2.1.4548 - Hewlett-Packard Company) Hidden
Face Recognition for HP ProtectTools (HKLM\...\Face Recognition for HP ProtectTools) (Version: 7.2.1.4548 - Hewlett-Packard Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 103.0.5060.134 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GoTo 3.26.1 (HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\b5746384-3503-4fbf-824a-0a42d1bd0639) (Version: 3.26.1 - GoTo Group, Inc)
GoTo Opener (HKLM-x32\...\{7659273F-0EB6-4ECB-BC7D-5889F3FD3075}) (Version: 1.0.562 - LogMeIn, Inc.)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
HP 3D DriveGuard (HKLM\...\{6C8684DD-B238-4806-9E93-BDD12CD11998}) (Version: 5.1.12.1 - Hewlett-Packard Company)
HP Auto (HKLM\...\{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}) (Version: 1.0.12935.3667 - Hewlett-Packard Company) Hidden
HP Connection Manager (HKLM-x32\...\{8C18FA50-5107-473C-B2A2-A8A32B0791E6}) (Version: 4.5.29.1 - Hewlett-Packard Company)
HP Customer Experience Enhancements (HKLM-x32\...\{07FA4960-B038-49EB-891B-9F95930AA544}) (Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP Documentation (HKLM-x32\...\{A351CC1B-C92C-4F37-8109-9F6D33ACF5EF}) (Version: 1.1.1.0 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{240B2BF7-E7E6-425C-A2A4-A3149189BF7F}) (Version: 2.3.1 - Hewlett-Packard Company)
HP File Sanitizer (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 8.1.1.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1113.1_WHQL - Sonix)
HP Hotkey Support (HKLM-x32\...\{7F7E2060-7212-4A53-9875-55173E4BA3F0}) (Version: 5.0.21.1 - Hewlett-Packard Company)
HP LaserJet Enterprise M604 (HKLM-x32\...\{50661589-9755-46ac-b12c-037bacefcec9}) (Version: 14.0.16126.481 - Hewlett-Packard)
HP Officejet 150 Mobile L511 (HKLM\...\{3ED22CC4-72D6-459D-BA06-16B9C5F38F1E}) (Version: 14.0 - HP)
HP Postscript Converter (HKLM\...\{6E14E6D6-3175-4E1A-B934-CAB5A86367CD}) (Version: 3.0.3384 - Hewlett-Packard) Hidden
HP Power Assistant (HKLM\...\{84642787-58C0-44AE-8B26-E2F544E380A1}) (Version: 2.5.0.16 - Hewlett-Packard Company)
HP ProtectTools Security Manager (HKLM\...\{6FE8E073-D159-4419-93E2-CE2C5B078562}) (Version: 7.0.1.1199 - Hewlett-Packard Company) Hidden
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 7.0.1.1199 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{FE465061-894A-4023-8580-56FCDD4F23F9}) (Version: 3.4.4.0 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{675D093B-815D-47FD-AB2C-192EC751E8E2}) (Version: 4.6.10.1 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{658A8756-7B1E-44FD-A434-D777DD906232}) (Version: 8.5.2.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company) Hidden
HP System Default Settings (HKLM-x32\...\{3A61A282-4F08-4D43-920C-DC30ECE528E8}) (Version: 2.6.1 - Hewlett-Packard Company)
HP Unified IO (HKLM\...\{5C76ED0D-0F6F-4985-8B34-F9AE7834848F}) (Version: 2.0.0.434 - HP) Hidden
HP Unified IO (HKLM-x32\...\{F1390872-2500-4408-A46C-CD16C960C661}) (Version: 2.0.0.434 - HP) Hidden
HP Wallpaper (HKLM-x32\...\{11C9A461-DD9D-4C71-85A4-6DCE7F99CC44}) (Version: 3.0.0.1 - Hewlett-Packard Company)
HPLJEnterpriseM604 (HKLM-x32\...\{C11F9CF1-C45E-4801-831B-40953E6BFDC4}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6435.0 - IDT)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3090 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{FA00A3CC-7440-4938-A271-F186F50DD40D}) (Version: 1.27.757.1 - Intel Corporation) Hidden
iTunes (HKLM\...\{DCBA66F6-FF88-47BF-BC2C-8A8D187911C1}) (Version: 12.12.4.1 - Apple Inc.)
Java 8 Update 333 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180333F0}) (Version: 8.0.3330.2 - Oracle Corporation)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.76.1 - JMicron Technology Corp.)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Messenger (HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 149.0.365481678 - Facebook, Inc.)
Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.15330.20266 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM\...\{D553E8CC-5C56-4B06-AC1A-A443DFF31092}) (Version: 6.3.9723.0 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM-x32\...\{64867E7B-D4D7-422E-883D-55C4BEB0E326}) (Version: 6.3.9723.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 103.0.1264.71 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 103.0.1264.71 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.141.0703.0002 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (HKLM-x32\...\{D0B44725-3666-492D-BEF6-587A14BD9BD9}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (HKLM\...\{E9FA781F-3E80-4399-825A-AD3E11C28C77}) (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NetworkRepairTool (HKLM-x32\...\{F97BCC3B-09E9-4298-8C23-B3CF6538B562}) (Version: 1.2.14.0 - Brother Insutries Ltd.) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15330.20230 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15330.20230 - Microsoft Corporation) Hidden
OpenOffice 4.1.7 (HKLM-x32\...\{A09D951F-4BA3-4383-97B3-D1B91835E779}) (Version: 4.17.9800 - Apache Software Foundation)
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
PC-FAXReceive (HKLM-x32\...\{5201BE8F-9694-4EC6-B0C8-E34C6F98D880}) (Version: 1.4.26.0 - Brother Insutries Ltd.) Hidden
PCFaxTx (HKLM-x32\...\{5C833296-4157-47C4-8C5F-053E2EC34D64}) (Version: 1.0.12.12 - Brother Industries Ltd.) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.1.49 - PDF Complete, Inc)
Photo Common (HKLM-x32\...\{CAA0F57A-BA8C-4AD8-AA03-F32B0E4F5623}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (HKLM-x32\...\{C992FFE0-AC32-4FA9-BC9A-F1637B9E655D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Privacy Manager for HP ProtectTools (HKLM\...\{29AB47F0-C5A3-401F-8A84-3324F2DC8E46}) (Version: 7.0.1.892 - Hewlett-Packard Company)
PSE10 STI Installer (HKLM-x32\...\{11D08055-939C-432b-98C3-E072478A0CD7}) (Version: 10.0 - Adobe Systems Incorporated) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.306 - Qualcomm Atheros Communications)
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
QuickBooks (HKLM-x32\...\{3167CC62-C775-4E47-92C1-73EBB845751A}) (Version: 23.0.4018.2305 - Intuit Inc.) Hidden
QuickBooks Pro 2013 (HKLM-x32\...\{3C631966-387E-4054-85D9-BBFFABE32BD8}) (Version: 23.0.4006.2305 - Intuit Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Real Estate Title Doc (HKLM-x32\...\ST6UNST #1) (Version: - )
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.58.411.2012 - Realtek)
RemoteSetup (HKLM-x32\...\{BDD8C463-1183-4A91-9EC8-BF68E4ECA9B6}) (Version: 3.9.2.1 - Brother Industries Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.22.0 - SAMSUNG Electronics Co., Ltd.)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 2.30.042 - Portrait Displays, Inc.) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Software Updater (HKLM-x32\...\{6DFBE8A2-CDBF-453E-B34C-32F202FCEE4C}) (Version: 4.2.1 - SEIKO EPSON CORPORATION)
StatusMonitor (HKLM-x32\...\{A399C7DA-797B-479F-8171-00A5815230E3}) (Version: 1.16.3.0 - Brother Insutries Ltd.) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.65 - Synaptics Incorporated)
Theft Recovery for HP ProtectTools (HKLM-x32\...\{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.0.10 - Hewlett-Packard Company) Hidden
Theft Recovery for HP ProtectTools (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.0.10 - Hewlett-Packard Company)
Toner Status (HKLM-x32\...\{6E9A516A-6189-4502-80FD-51BE28989CEB}) (Version: 1.1.0.0 - CANON INC.)
UsbRepairTool (HKLM-x32\...\{523276A4-5779-4105-9163-CA1CF94EC533}) (Version: 1.4.0.0 - Brother Insutries Ltd.) Hidden
Validity Fingerprint Sensor Driver (HKLM\...\{ADAA7361-54B8-4FC8-804E-94EC6C11ED68}) (Version: 4.5.133.0 - Validity Sensors, Inc.)
Verizon Wireless Software Upgrade Assistant - Samsung(ar) (HKLM-x32\...\{D31032BD-B70C-4E1E-8BE3-0B870A910983}) (Version: 2.14.1002 - Samsung Electronics Co., Ltd.)
Verizon Wireless Software Utility Application for Android - Samsung (HKLM-x32\...\{69258FD1-F4EE-475A-83D1-BF68C8029592}) (Version: 2.14.0402 - Samsung Electronics Co., Ltd.)
Windows Live Communications Platform (HKLM-x32\...\{41C61308-6CFD-4D54-AB6A-7136ED08A18E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{66B5819D-DE70-42BE-B40F-978FBA12452E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{CE52672C-A0E9-4450-8875-88A221D5CD50}) (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{B775C26B-EAA8-4A11-ACBF-76E52DF6B805}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{BAD27F0E-5165-49A5-BE66-AF5BF73F2FEE}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{BAD984EE-790E-4513-A428-3BE2D426DCA7}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{E703613B-BDAB-433E-A66A-DE0263E3D35D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (HKLM\...\{25058321-C33E-496B-8915-6FD64D362CAF}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{D1893000-EA77-493C-8DDD-E262436E959B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{6522F5F9-411B-4513-A75B-CEA00395F032}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{04BE4035-3C8E-4B48-BFB8-1655849C0C8B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{714E162E-CD4F-4F1B-8302-7F5179409C25}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{A2DC527D-FA79-46E9-973F-920897CA55E9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{0F974770-76EB-4C38-986E-E7BDD9C0DFC4}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinZip 15.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CF}) (Version: 15.0.10039 - WinZip Computing, S.L. )

Packages:
=========
Canon Office Printer Utility -> C:\Program Files\WindowsApps\34791E63.CanonOfficePrinterUtility_12.7.0.0_x64__6e5tt8cgb93ep [2022-01-03] (Canon Inc.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.33.1.0_x64__6rarf9sa4v8jt [2022-07-17] (Disney)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6 [2022-07-17] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-01-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-01-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7040.0_x64__8wekyb3d8bbwe [2022-07-12] (Microsoft Studios) [MS Ad]
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-01-24] (Microsoft Corporation)
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2022-01-07] (Adobe Systems Incorporated)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.190.859.0_x86__zpdnekdrzrea0 [2022-07-25] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001_Classes\CLSID\{04271989-C4D2-EC2E-9583-64A27F0588F9} -> [OneDrive - GONGLOFF PIECHOWIAK LAW PLLC] => C:\Users\Kelly\OneDrive - GONGLOFF PIECHOWIAK LAW PLLC [2021-06-01 20:38]
CustomCLSID: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Kelly\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileCoAuthLib64.dll => No File
CustomCLSID: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Kelly\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Kelly\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001_Classes\CLSID\{B5B8593C-89BC-44a7-BCE3-32FE4FED7C5C}\InprocServer32 -> C:\Users\Kelly\AppData\Local\Workspace\wbetoolsax64.dll => No File
CustomCLSID: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Kelly\Dropbox [2022-01-03 16:55]
CustomCLSID: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001_Classes\CLSID\{E86236DE-9BD2-42b7-86F6-A829D8EC768C}\InprocServer32 -> C:\Users\Kelly\AppData\Local\DIRECTV Player\win64\npPlayerPlugin64.dll => No File
CustomCLSID: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Kelly\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-07-31] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-07-31] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-07-31] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-07-31] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ShredContextMenu] -> {85EFA470-665A-4322-AB1E-1EB9C70F61C8} => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\ShredContextMenu.dll [2013-03-06] (Hewlett-Packard Company -> )
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-09] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [ShredContextMenu] -> {85EFA470-665A-4322-AB1E-1EB9C70F61C8} => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\ShredContextMenu.dll [2013-03-06] (Hewlett-Packard Company -> )
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-09] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.141.0703.0002\FileSyncShell64.dll [2022-07-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-05-21] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-07-31] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-09] (WinZip Computing -> WinZip Computing, S.L.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Kelly\Desktop\KD - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Kelly\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Kelly - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\Kelly\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\K - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"

==================== Loaded Modules (Whitelisted) =============

2015-08-17 13:09 - 2005-04-22 13:36 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2015-09-24 10:41 - 2015-09-24 10:41 - 012532835 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\AcroForm.api
2015-09-24 10:42 - 2015-09-24 10:42 - 007832675 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\Annots.api
2015-09-24 10:42 - 2015-09-24 10:42 - 000860771 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\Checkers.api
2015-09-24 10:41 - 2015-09-24 10:41 - 001462371 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\DigSig.api
2015-09-24 10:42 - 2015-09-24 10:42 - 001779811 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\EScript.api
2015-09-24 10:42 - 2015-09-24 10:42 - 000106595 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\IA32.api
2015-09-24 10:41 - 2015-09-24 10:41 - 007652963 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\PPKLite.api
2015-09-24 10:42 - 2015-09-24 10:42 - 000169059 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\Updater.api
2015-08-17 13:09 - 2016-11-01 11:27 - 000090112 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2016-05-22 16:47 - 2015-02-24 10:08 - 000002048 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\OIPTonerStatus\CnTnrStsTask_EN.dll
2016-05-22 16:46 - 2015-01-20 03:30 - 000005120 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.DLL
2016-05-22 16:43 - 2013-01-31 04:21 - 000152064 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNCENPM6.dll
2010-09-06 13:18 - 2010-09-06 13:18 - 000916992 _____ (Free Software Foundation) [File not signed] C:\WINDOWS\SYSTEM32\iconv.DLL
2009-09-16 18:44 - 2009-09-16 18:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll
2009-09-16 18:45 - 2009-09-16 18:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll
2009-09-16 11:44 - 2009-09-16 11:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll
2009-05-14 16:49 - 2009-05-14 16:49 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2009-05-14 16:49 - 2009-05-14 16:49 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2006-01-18 16:06 - 2006-01-18 16:06 - 001017856 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\dbghelp.dll
2009-09-16 18:45 - 2009-09-16 18:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll
2022-05-20 18:13 - 2022-05-20 18:13 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2022-05-20 18:13 - 2022-05-20 18:13 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2022-01-07 12:39 - 2022-04-28 00:55 - 001084416 _____ (Robert Simpson, et al.) [File not signed] C:\Users\Kelly\AppData\Roaming\Chime\x86\SQLite.Interop.dll
2010-10-25 15:13 - 2010-10-25 15:13 - 001785856 _____ (RSA - The Security Division of EMC) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ccme_base.dll
2010-10-25 15:13 - 2010-10-25 15:13 - 001839104 _____ (RSA - The Security Division of EMC) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\cryptocme2.dll
2016-01-05 12:52 - 2011-08-30 14:38 - 000558080 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2016-01-05 12:52 - 2011-08-01 19:24 - 000250880 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enpres.dll
2016-01-05 12:52 - 2013-12-23 11:00 - 000040448 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\system32\spool\DRIVERS\x64\3\EFXGI09A.DLL
2016-01-05 12:52 - 2013-12-23 11:00 - 000181760 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\system32\spool\DRIVERS\x64\3\EFXMI09A.dll
2016-01-05 12:52 - 2013-12-23 11:00 - 000235008 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\system32\spool\DRIVERS\x64\3\EFXUI09A.DLL
2013-03-11 11:21 - 2013-03-11 11:21 - 000643072 _____ (STLport Consulting, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\stlport_r50.dll
2013-03-11 11:21 - 2013-03-11 11:21 - 000643072 _____ (STLport Consulting, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Intuit\QuickBooks\stlport_r50.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================
 
Addition.txt Part 2

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istart123.com/web/?type=ds&ts=1406393217&from=irs&uid=HitachiXHTS727575A9E364_J3390084JERN4DJERN4DX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istart123.com/web/?type=ds&ts=1406393217&from=irs&uid=HitachiXHTS727575A9E364_J3390084JERN4DJERN4DX&q={searchTerms}
SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://search.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CMNTDF
SearchScopes: HKLM-x32 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://search.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CMNTDF
SearchScopes: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://search.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CMNTDF
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_333\bin\ssv.dll [2022-05-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_333\bin\jp2ssv.dll [2022-05-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-08-07] (Softex Incorporated -> Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SecureWebBHO Class -> {D3C24E2B-C820-4492-9B69-11BF7163F998} -> C:\Program Files (x86)\Jelbrus Secure Web\jsie.dll => No File
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://qtinstall.apple.com/qtactivex/qtplugin.cab
Handler-x32: intu-help-qb6 - {6898B29B-BF49-43cb-A0B1-D0B9496AF491} - C:\Program Files (x86)\Intuit\QuickBooks 2013\HelpAsyncPluggableProtocol.dll [2016-05-09] (Intuit, Inc. -> Intuit, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\courthousedirect.com -> hxxps://rdweb1.courthousedirect.com
IE trusted site: HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\sharepoint.com -> hxxps://gplawandtitle.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2009-06-10 16:00 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;c:\program files (x86)\graphicsmagick-1.3.21-q8;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Common Files\Intuit\QBPOSSDKRuntime;C:\Program Files (x86)\QuickTime\QTSystem\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\Control Panel\Desktop\\Wallpaper -> c:\users\kelly\appdata\local\microsoft\windows\themes\transcodedwallpaper.jpg
DNS Servers: 192.168.4.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: ACDaemon => 3
MSCONFIG\Services: AdobeActiveFileMonitor10.0 => 2
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: Apple Mobile Device Service => 2
MSCONFIG\Services: astccV6 => 2
MSCONFIG\Services: AtherosSvc => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: BrYNSvc => 3
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: DpHost => 2
MSCONFIG\Services: EpsonCustomerParticipation => 2
MSCONFIG\Services: EPSON_PM_RPCV4_05 => 2
MSCONFIG\Services: FLCDLOCK => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HP Power Assistant Service => 2
MSCONFIG\Services: HP Support Assistant Service => 2
MSCONFIG\Services: hpCMSrv => 3
MSCONFIG\Services: HPFSService => 2
MSCONFIG\Services: hpHotkeyMonitor => 2
MSCONFIG\Services: hpqwmiex => 3
MSCONFIG\Services: hpsrv => 2
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) ME Service => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: McAfee Endpoint Encryption Agent => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NasPmService => 2
MSCONFIG\Services: pdfcDispatcher => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: STacSV => 2
MSCONFIG\Services: uArcCapture => 2
MSCONFIG\Services: UNS => 2
MSCONFIG\Services: vcsFPService => 2
MSCONFIG\Services: ZAtheros Bt and Wlan Coex Agent => 2
MSCONFIG\startupfolder: C:^Users^Kelly^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^BUFFALO NAS Navigator2.lnk => C:\windows\pss\BUFFALO NAS Navigator2.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Kelly^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^NAS Scheduler.lnk => C:\windows\pss\NAS Scheduler.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Kelly^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Kelly^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Send to OneNote.lnk => C:\windows\pss\Send to OneNote.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Kelly^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Verizon Wireless Software Utility Application for Android – Samsung.lnk => C:\windows\pss\Verizon Wireless Software Utility Application for Android – Samsung.lnk.Startup
MSCONFIG\startupreg: (default) =>
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Speed Launcher => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AMD AVT => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BrStsMon00 => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
MSCONFIG\startupreg: ControlCenter4 => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
MSCONFIG\startupreg: DTRun => c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: File Sanitizer => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
MSCONFIG\startupreg: FUFAXRCV => "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe"
MSCONFIG\startupreg: FUFAXSTM => "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"
MSCONFIG\startupreg: GoogleChromeAutoLaunch_D2782999957AFE6FE56DCB3958D51F7A => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HotKeysCmds => C:\windows\system32\hkcmd.exe
MSCONFIG\startupreg: HPConnectionManager => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
MSCONFIG\startupreg: HPPowerAssistant => C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: IgfxTray => C:\windows\system32\igfxtray.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: MfeEpePcMonitor => "C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe
MSCONFIG\startupreg: Persistence => C:\windows\system32\igfxpers.exe
MSCONFIG\startupreg: QLBController => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKLM\...\StartupApproved\Run32: => "FUFAXRCV"
HKLM\...\StartupApproved\Run32: => "FUFAXSTM"
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\StartupApproved\Run: => "Amazon Music"
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\StartupApproved\Run: => "Amazon Music Helper"
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\StartupApproved\Run: => "com.messenger"
HKU\S-1-5-21-2715000777-2983012191-3946071522-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_5B8D12AB4171EFD84CFAC473E09CF6F8"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{44EDA242-9F87-459F-A2E3-7AE058F23E65}C:\users\kelly\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\kelly\appdata\local\amazon music\amazon music helper.exe (Amazon Services LLC -> Amazon Services LLC)
FirewallRules: [TCP Query User{3D81FAC5-6B77-4BDB-A561-1298244DD603}C:\users\kelly\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\kelly\appdata\local\amazon music\amazon music helper.exe (Amazon Services LLC -> Amazon Services LLC)
FirewallRules: [UDP Query User{4655412F-E951-4D42-BAC3-E27FDA553EEC}C:\users\kelly\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\kelly\appdata\local\amazon music\amazon music helper.exe (Amazon Services LLC -> Amazon Services LLC)
FirewallRules: [TCP Query User{DF0573A7-AD63-4089-B44B-FCBCE2A3FBAC}C:\users\kelly\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\kelly\appdata\local\amazon music\amazon music helper.exe (Amazon Services LLC -> Amazon Services LLC)
FirewallRules: [{A93344CD-47E3-4DAF-88B1-036672424845}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe => No File
FirewallRules: [{1C918F8C-1DEA-4F5B-AD2F-70CFEDFE5324}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe => No File
FirewallRules: [{09EAF417-AEEA-43D8-BB41-69980C373F3C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2E3AD1DB-17EB-48E7-8E35-C8DB209688EE}] => (Allow) C:\Program Files (x86)\123CopyDVDPlatinum 2012\123CopyDVDPlatinum.exe => No File
FirewallRules: [{7CD1733A-6E10-4D21-BF2E-4DAC7D910245}] => (Allow) C:\Program Files (x86)\123CopyDVDPlatinum 2012\123CopyDVDPlatinum.exe => No File
FirewallRules: [UDP Query User{0C427155-441E-40AE-B89C-4B13FB020B33}C:\program files (x86)\google\chrome\application\new_chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\new_chrome.exe => No File
FirewallRules: [TCP Query User{C8BF3350-F57E-439F-BC1C-909CFE23BAC4}C:\program files (x86)\google\chrome\application\new_chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\new_chrome.exe => No File
FirewallRules: [UDP Query User{F0DE2091-3E47-4461-A8AC-AD3BA7FFA685}C:\program files (x86)\google\chrome\application\new_chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\new_chrome.exe => No File
FirewallRules: [TCP Query User{209507D5-F339-4F7C-831D-3F3CB95F0472}C:\program files (x86)\google\chrome\application\new_chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\new_chrome.exe => No File
FirewallRules: [{9559B4C4-BBB5-4DF1-988E-0EC999818223}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{2C58EEC8-F8E5-4506-9FDE-FC6104AD6ABE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{8D0BBD16-6951-4D0F-9741-64F4606535C3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{0A8532FA-78E4-469B-BE2F-CFE7D91D6423}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{292350F3-79B8-4A7B-AC17-BC3560A68F81}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [UDP Query User{6199598B-74EF-49AE-AD60-1318796CACD5}C:\users\kelly\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\kelly\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe => No File
FirewallRules: [TCP Query User{A96F8750-7A3D-4AAB-9688-B2D40FE44C6A}C:\users\kelly\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\kelly\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe => No File
FirewallRules: [{73B90FEE-02FC-4B9D-A3B7-0E8C55AA0CBF}] => (Allow) C:\Users\Kelly\AppData\Local\Temp\WZSE2.TMP\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [{D11CA5F3-09DF-4BAA-B9DF-C0AFDCC5A308}] => (Allow) C:\Users\Kelly\AppData\Local\Temp\WZSE2.TMP\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [{1C993AF7-7E40-4D11-A2A6-DC2393CB9DBB}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F142220B-F598-4E25-A24B-535B0CC74EC8}] => (Allow) LPort=1900
FirewallRules: [{3E2C9E13-A1F8-4EE1-B5A9-24F75C19EB03}] => (Allow) LPort=2869
FirewallRules: [{E1B4E6B6-E777-4BFC-B397-010ACB303AEA}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ED53072E-C1AC-4172-B69A-42052CDE54E8}] => (Allow) C:\Users\Kelly\AppData\Local\Temp\WZSE1.TMP\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [{CC5ED6F0-020B-4BF7-9325-9F27F0DD4ED4}] => (Allow) C:\Users\Kelly\AppData\Local\Temp\WZSE1.TMP\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [{8D606B64-40A5-4053-BA2C-F3767F5C6D2B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{11975EC1-DCC7-4AC6-8C2D-417B6510C3F2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3643C8CF-2FDE-4A79-B1B6-9A8FA8CFE9B5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{50358B3C-D359-4AB7-8AEA-4C31F1F280B1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E5DB56D9-22D0-4FF3-BFC8-DA8449E5275E}] => (Allow) C:\Users\Kelly\AppData\Local\Microsoft\OneDrive\OneDrive.exe => No File
FirewallRules: [{4E7593FB-1D58-47DC-A58B-B0421FBB3D25}] => (Allow) LPort=54925
FirewallRules: [{83D01108-0D46-4CA1-8364-A3796AC78FF0}] => (Allow) C:\Program Files (x86)\Brother\Brmfl11e\FAXRX.exe => No File
FirewallRules: [{262AD7A6-7A94-4F45-BE66-208575C0810D}] => (Allow) C:\Program Files (x86)\Brother\Brmfl11e\FAXRX.exe => No File
FirewallRules: [UDP Query User{D8A5BAD9-7C8B-4F7C-A0DF-770B9279E788}C:\windows\system32\wfs.exe] => (Allow) C:\windows\system32\wfs.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{B5DFAA7D-1B10-4B9A-9D6E-B6E3EA9D55C4}C:\windows\system32\wfs.exe] => (Allow) C:\windows\system32\wfs.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{54439205-EF3F-42D2-A846-22AAB7923E01}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe => No File
FirewallRules: [{3DC3DE11-1861-42C3-906A-922530A1104D}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe => No File
FirewallRules: [{9B328F8B-D2FA-409D-A9AD-28FD2A935F3C}] => (Allow) C:\Program Files (x86)\123CopyDVDPlatinum 2012\helper.exe => No File
FirewallRules: [{23DAF2AD-06F9-43E3-AD7C-A0DF3C60A41C}] => (Allow) C:\Program Files (x86)\123CopyDVDPlatinum 2012\helper.exe => No File
FirewallRules: [{D1919051-82AE-484E-BB7B-9AFE25523EC1}] => (Allow) C:\Program Files (x86)\123CopyDVDPlatinum 2012\123CopyDVDPlatinum.exe => No File
FirewallRules: [{100A35C4-1A86-45F0-BACE-65F9DA7FCF7E}] => (Allow) C:\Program Files (x86)\123CopyDVDPlatinum 2012\123CopyDVDPlatinum.exe => No File
FirewallRules: [UDP Query User{B9D87E14-219C-4ACC-8C7C-8AADC3C00A7C}C:\users\kelly\appdata\local\directv player\ndspcshowserver.exe] => (Allow) C:\users\kelly\appdata\local\directv player\ndspcshowserver.exe => No File
FirewallRules: [TCP Query User{6049412A-A23C-43FA-B6E0-EE8A59500F94}C:\users\kelly\appdata\local\directv player\ndspcshowserver.exe] => (Allow) C:\users\kelly\appdata\local\directv player\ndspcshowserver.exe => No File
FirewallRules: [UDP Query User{7962C58C-DC11-441E-985C-8741F15BF64A}C:\users\kelly\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kelly\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [TCP Query User{6E6A325D-732A-4222-A659-F6FEC8502EA9}C:\users\kelly\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kelly\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{8E40D2FB-AE6B-4A38-956F-0877869DF27B}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{5F794891-7D24-4CDC-9271-D03FAA362F54}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{DCD0827F-6E22-4594-8D8A-E6977AFAAE07}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{17F168F2-1FE0-4A27-AA92-DD35E6ECF37D}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [{D3F979A8-65E2-4465-932A-F18CC1682275}] => (Allow) C:\Users\Kelly\AppData\Local\Temp\WZSE0.TMP\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [{42F44A58-53AB-4422-883E-95293BC81599}] => (Allow) C:\Users\Kelly\AppData\Local\Temp\WZSE0.TMP\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [UDP Query User{EE08B73B-5866-4F1D-8C71-1ED063C66F7A}C:\program files (x86)\filezilla ftp client\filezilla.exe] => (Allow) C:\program files (x86)\filezilla ftp client\filezilla.exe => No File
FirewallRules: [TCP Query User{FA525A22-4DEE-4DC2-AD62-2A75C0C0D593}C:\program files (x86)\filezilla ftp client\filezilla.exe] => (Allow) C:\program files (x86)\filezilla ftp client\filezilla.exe => No File
FirewallRules: [{3540698E-69DC-4E06-9019-723EDA72D16A}] => (Allow) C:\Users\Kelly\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe => No File
FirewallRules: [UDP Query User{367EF3ED-D0EA-4453-AEEA-59F1F0B60626}C:\program files (x86)\buffalo\nasnavi\nasnavi.exe] => (Allow) C:\program files (x86)\buffalo\nasnavi\nasnavi.exe => No File
FirewallRules: [TCP Query User{8415B3F9-8391-421F-B42E-34E47392222B}C:\program files (x86)\buffalo\nasnavi\nasnavi.exe] => (Allow) C:\program files (x86)\buffalo\nasnavi\nasnavi.exe => No File
FirewallRules: [{08DC5A90-7A45-47F2-B7E3-1FBFFDFE3ABB}] => (Allow) C:\Program Files (x86)\BUFFALO\NASNAVI\NasNavi.exe => No File
FirewallRules: [{2182580A-6946-4A92-BB42-9905DE718981}] => (Allow) C:\Program Files (x86)\BUFFALO\NASNAVI\NasNavi.exe => No File
FirewallRules: [UDP Query User{5686432E-18BD-45B7-801F-16D32ED2DA43}C:\program files (x86)\bluetooth suite\bttray.exe] => (Allow) C:\program files (x86)\bluetooth suite\bttray.exe => No File
FirewallRules: [TCP Query User{E55D88F1-A12A-48C0-A1DB-D99347912A96}C:\program files (x86)\bluetooth suite\bttray.exe] => (Allow) C:\program files (x86)\bluetooth suite\bttray.exe => No File
FirewallRules: [UDP Query User{CC562667-9922-4725-8185-7A9C42CF7274}C:\program files (x86)\bluetooth suite\btvstack.exe] => (Allow) C:\program files (x86)\bluetooth suite\btvstack.exe => No File
FirewallRules: [TCP Query User{864BFF33-DE4A-49A3-B342-D696CCE7F0B4}C:\program files (x86)\bluetooth suite\btvstack.exe] => (Allow) C:\program files (x86)\bluetooth suite\btvstack.exe => No File
FirewallRules: [{B3B3FB1F-D48D-48F6-95B4-F6EF0C0716F6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{287806E7-DB65-4444-BE80-8D26887C90AF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8E051742-99F4-43D2-895E-B57C7C5594D3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{194263E9-6F66-43A9-9D1E-609715A0C475}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{819E2C68-A17C-4F6E-9C05-128B7C72414A}] => (Allow) C:\Program Files (x86)\Bluetooth Suite\Win7Ui.exe (Qualcomm Atheros -> Qualcomm Atheros) [File not signed]
FirewallRules: [{D48C3B62-4EB5-4DC2-BD7F-0094A1E473F9}] => (Allow) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe => No File
FirewallRules: [{53D969E8-DD42-4CF8-9422-D494732B0695}] => (Allow) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe => No File
FirewallRules: [{E156A96D-1753-41A4-8C4B-13C22A099630}] => (Allow) C:\Program Files (x86)\Bluetooth Suite\Btvstack.exe => No File
FirewallRules: [{28E612AC-DF1E-40DB-B6F4-489C503A89DA}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F6B8A6F3-F45F-4364-B91D-940BD04FBF76}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AA10F35D-DAC4-4A4D-8CB0-1C09455FD204}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{48254BAE-BE10-4CF6-8C9E-9A88C1FE586E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BC97CE41-FAD2-489C-8D49-7321AD6651C2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{773A9924-80A9-4251-BEDD-79CFE88BCBB6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B81CB404-E36F-438A-BAE3-CB09DA3F87C9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E519F61A-9886-43A5-8A4E-81E568739A2C}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{3FDE7C1E-5A99-4B4F-960B-3FFF86A1FD79}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\103.0.1264.71\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA469F6A-1318-4D7D-8801-9E2E55B268F8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.190.859.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BBD96BEA-2838-422D-9623-73C02BA30E0D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.190.859.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A12766D5-9B70-4E9A-95E2-D6DBF3817952}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.190.859.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5EB534A0-71D0-4D00-9BB1-B73D19371B73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.190.859.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{79668CC8-5909-463B-B21C-19572CDDDEED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.190.859.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EAC99906-BB01-4364-845A-91B035D3EE1F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.190.859.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{21335AF2-3EA6-4F44-894F-B1AD254C1C47}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.190.859.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{549862E1-3B62-4E47-B680-24D68CF2A6B5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.190.859.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

27-07-2022 09:41:47 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============

Name: AMD Radeon HD 7650M
Description: AMD Radeon HD 7650M
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Advanced Micro Devices, Inc.
Service: amdkmdap
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.


==================== Event log errors: ========================

Application errors:
==================
Error: (07/27/2022 08:30:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1806 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 3058

Start Time: 01d8a221687323d6

Termination Time: 73

Application Path: C:\Windows\explorer.exe

Report Id: 4dd408ef-f2ea-4fcd-a144-309ec0ce9b74

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (07/27/2022 07:54:48 PM) (Source: Microsoft Security Client Setup) (EventID: 100) (User: Kelly-HP)
Description: HRESULT:0x8004FF6F
Description:You don’t need to install Microsoft Security Essentials. Your version of Windows includes an updated version of Windows Defender that provides the same level of protection as Microsoft Security Essentials, along with other significant improvements. <a>For more information on the differences and improvements, see online Help</a>. Error code:0x8004FF6F.

Error: (07/27/2022 07:42:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1806 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 4d68

Start Time: 01d8a21a52cfbf3e

Termination Time: 65

Application Path: C:\Windows\explorer.exe

Report Id: b2356d36-ea6d-4ecb-bd49-6870dae985cc

Faulting package full name:

Faulting package-relative application ID:

Hang type: Cross-process

Error: (07/27/2022 07:26:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1806 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 3b78

Start Time: 01d8a2179aeffef2

Termination Time: 0

Application Path: C:\Windows\explorer.exe

Report Id: dc7e2ffb-ded9-4bed-9da6-c89f1c13e8a1

Faulting package full name:

Faulting package-relative application ID:

Hang type: Cross-process

Error: (07/27/2022 07:20:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1806 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 44fc

Start Time: 01d8a2140bdad797

Termination Time: 0

Application Path: C:\Windows\explorer.exe

Report Id: 3bb2a4ca-4ef8-4b06-8b8f-020d42678564

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (07/27/2022 06:47:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1806 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 29f8

Start Time: 01d8a20c2faa9961

Termination Time: 0

Application Path: C:\Windows\explorer.exe

Report Id: eb182dcb-9f66-4e08-93b4-077705d433c4

Faulting package full name:

Faulting package-relative application ID:

Hang type: Cross-process

Error: (07/27/2022 04:59:14 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Kelly-HP.local already in use; will try Kelly-HP-2.local instead

Error: (07/27/2022 04:59:14 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Kelly-HP.local. Addr 192.168.4.26


System errors:
=============
Error: (07/27/2022 06:03:07 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1053" attempting to start the service gupdate with arguments "/comsvc" in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (07/27/2022 06:03:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (07/27/2022 06:03:07 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.

Error: (07/26/2022 07:35:58 PM) (Source: volsnap) (EventID: 36) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (07/26/2022 05:00:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The CscService service terminated with the following error:
The system cannot find the path specified.

Error: (07/26/2022 05:00:04 PM) (Source: volmgr) (EventID: 45) (User: )
Description: The system could not sucessfully load the crash dump driver.

Error: (07/26/2022 04:59:41 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Crash dump initialization failed!

Error: (07/26/2022 04:59:41 PM) (Source: volmgr) (EventID: 45) (User: )
Description: The system could not sucessfully load the crash dump driver.


Windows Defender:
================
Date: 2022-07-27 17:52:53
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Full Scan

Date: 2022-07-27 17:52:53
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
Name: PUA:Win32/AskToolbar
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Users\Kelly\AppData\Local\Downloaded Installations\{AC08ECED-D6F8-404E-93A0-F037F0623C92}\The Weather Channel App.msi
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: User
Process Name: Unknown
Security intelligence Version: AV: 1.371.889.0, AS: 1.371.889.0, NIS: 1.371.889.0
Engine Version: AM: 1.1.19400.3, NIS: 1.1.19400.3

Date: 2022-07-27 02:45:55
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-07-26 02:45:54
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-07-25 20:22:03
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:

Date: 2022-07-14 22:24:49
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.371.120.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19400.3
Error code: 0x80072ee2
Error description: The operation timed out

CodeIntegrity:
===============
Date: 2022-07-26 21:00:08
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-06-16 03:50:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-05-06 14:42:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: Hewlett-Packard 68IRR Ver. F.43 10/07/2013
Motherboard: Hewlett-Packard 17F6
Processor: Intel(R) Core(TM) i7-3612QM CPU @ 2.10GHz
Percentage of memory in use: 83%
Total physical RAM: 8071.55 MB
Available physical RAM: 1331.37 MB
Total Virtual: 16263.55 MB
Available Virtual: 7022.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:675.57 GB) (Free:468.48 GB) (Model: Hitachi HTS727575A9E364) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.97 GB) (Model: Hitachi HTS727575A9E364) FAT32
Drive g: (HP_RECOVERY) (Fixed) (Total:20.77 GB) (Free:3.2 GB) (Model: Hitachi HTS727575A9E364) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{ec4ea535-a2f0-11e2-a470-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.25 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: E201C75A)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=675.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20.8 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0C)

==================== End of Addition.txt =======================
 
Please, observe following rules:
  • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
  • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
  • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
  • Never run more than one scan at a time.
  • Keep updating me regarding your computer behavior, good, or bad.
  • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
  • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
  • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

====================================

redtarget.gif
Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2
  • Close all the running programs
  • Double click on downloaded setup.exe file to install the program.
  • Click on Start Scan button.
  • Click on another Start Scan button.
  • Wait until the Status box shows Scan Finished
  • Click on Remove Selected.
  • Wait until the Status box shows Deleting Finished.
  • Click on Report and copy/paste the content of the Notepad into your next reply.
  • RKreport.txt could also be found on your desktop.
  • If more than one log is produced post all logs.
redtarget.gif
Please download Malwarebytes to your desktop.
  • Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  • Then click Finish.
  • Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  • If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  • When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  • Restart your computer when prompted to do so.
  • The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.
redtarget.gif
Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8/10 users right-click and select Run As Administrator
  • The tool will start to update the database if one is required.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Logfile button.
  • A window will open which lists the logs of your scans.
  • Click on the Scan tab.
  • Double-click the most recent scan which will be at the top of the list....the log will appear.
  • Review the results...see note below
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
  • To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
  • Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
  • A copy of all logfiles are saved to C:\AdwCleaner.
-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.
 
You must log in or register to reply here.

Similar threads

uber_beetle
Infected with fake ad pop-ups - posting FRST and Addition
Replies
12
Views
792
uber_beetle
uber_beetle
A
Infected: Antivirus says it's Trojan:Script/Wacatac.H!ml
Replies
12
Views
2K
adidaman27
A
wshknwntlprtmn
  • Locked
Inactive Not sure what's going on here....
Replies
12
Views
2K
Broni
Broni

Latest posts

Back