Kaspersky Blocked HEUR: Trojan.Script.Genric Download; Making Sure It's Clean

Hello once again, good folks at Bleeping Computer.

I have the same system specs as before (yes really, and ironically this laptop is headed toward the end of its usefulness cycle) and I'm pretty confident that my system is clean because my VP did its job, but I want to make sure that it is.

While attempting to visit a website today, I got a Malicious Object Detected followed by a Download Denied message from Kaspersky, with the detection HEUR: Trojan.Script.Genric, preceded by Kaspersky blocking access to the page (ironically it was detected clean by their website safety scan).I want to make sure I'm still clean as a whistle before i proceed to stay chill about the situation though.

AdAware, MalwareBytes and Kaspersky scans so far have all come up clean, and I'm just seeking to quell my tech paranoia that all is well.Any further advice?

Because I'm a moron today: my FRST Scan:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2021Ran by Owner (administrator) on DOONEYSEXBOT4 (Hewlett-Packard HP 15 Notebook PC) (22-06-2021 17:56:58)Running from C:\Users\Owner\DesktopLoaded Profiles: OwnerPlatform: Windows 10 Home Version 20H2 19042.1052 (X64) Language: English (United States)Default browser: ChromeBoot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Digital Editions 4.5\DigitalEditions.exe(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <16>(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe(Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Paint Shop Pro 9.exe <4>(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\plugins_nms.exe(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\temporaryFolder\updates\bin\kav21\mr3\21.3.10.391_kis_c\avp.exe.20da0eba-80bf-4abf-a04b-95a431418b5a_2553_4126.removeOnNextReboot.209351bf-eaaa-4ef8-acfa-6ec4e12ea26d.locked(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\temporaryFolder\updates\bin\kav21\mr3\21.3.10.391_kis_c\avpui.exe.20da0eba-80bf-4abf-a04b-95a431418b5a_2553_4126.removeOnNextReboot.7937f550-f33d-4698-8ab2-5353ad862728.locked(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE(Microsoft Corporation -> Microsoft Corporation) C:\Users\Owner\AppData\Local\Microsoft\OneDrive\OneDrive.exe(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe(Microsoft® Corporation) [File not signed] C:\Program Files (x86)\Microsoft Works\WkDStore.exe(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-07-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)HKU\S-1-5-21-568421124-514302383-3346671423-1001\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe [699112 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-17] (Google LLC -> Google LLC)HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {15696D8F-B677-4974-9F75-8F58299E9A18} - System32\Tasks\kpm_tray.exe => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [613096 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)Task: {271E309B-5368-4A2B-A24A-933CEC9BEB04} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-04] (Google Inc -> Google LLC)Task: {68833020-9354-45E2-808E-A33E960011EC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECKTask: {7217746F-73C4-4C74-8417-58DE5A66C352} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [743488 2021-04-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)Task: {B818804A-9B6A-424D-8978-F54A1910A076} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-04] (Google Inc -> Google LLC) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76Tcpip\..\Interfaces\{4d2fdf97-8800-48d4-99b0-39a77a8d5459}: [DhcpNameServer] 75.75.75.75 75.75.76.76 Edge: =======DownloadDir: C:\Users\Owner\DownloadsEdge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]Edge Profile: C:\Users\Owner\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-22]Edge Extension: (Kaspersky Protection) - C:\Users\Owner\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-06-22]Edge HKU\S-1-5-21-568421124-514302383-3346671423-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] FireFox:========FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => not foundFF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => not found Chrome: =======CHR DefaultProfile: DefaultCHR Profile: C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default [2021-06-22]CHR DownloadDir: C:\Users\Owner\DownloadsCHR Notifications: Default -> hxxps://direct.chownow.com; hxxps://meet.google.comCHR Extension: (Slides) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-04]CHR Extension: (Kaspersky Protection) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-06-01]CHR Extension: (Docs) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-04]CHR Extension: (Google Drive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]CHR Extension: (YouTube) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-04]CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-06-01]CHR Extension: (Sheets) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-04]CHR Extension: (Google Docs Offline) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-15]CHR Extension: (New XKit) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\inobiceghmpkaklcknpniboilbjmlald [2020-05-23] [UpdateUrl:hxxps://new-xkit.github.io/XKit/Extensions/dist/page/FirefoxUpdate.json] <==== ATTENTIONCHR Extension: (Chrome Web Store Payments) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]CHR Extension: (Gmail) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]CHR Extension: (Chrome Media Router) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-14]CHR Profile: C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-12-24]CHR Profile: C:\Users\Owner\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-24]CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdmCHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [106952 2015-07-04] (Andrea Electronics -> Andrea Electronics Corporation)R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [184768 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R2 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [368360 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)S2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [646520 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 epp; C:\EEK\bin64\epp.sys [176128 2019-07-06] (Emsisoft Ltd -> Emsisoft Ltd)R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [59840 2015-11-16] (WDKTestCert sys_dpebuild,130674149657513416 -> Intel Corporation)R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [657696 2021-05-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 KLHK; C:\WINDOWS\System32\drivers\klhk.sys [1439456 2021-05-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [253736 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab)R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab)R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab)R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-04-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [420072 2021-03-16] (Microsoft Windows -> Microsoft Corporation)S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-16] (Microsoft Windows -> Microsoft Corporation)R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)==================== Three months (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-06-20 17:56 - 2021-06-20 17:56 - 000035518 _____ C:\Users\Owner\Downloads\oEHhMTyK.jpg_small2021-06-20 17:51 - 2021-06-20 17:52 - 000228973 _____ C:\Users\Owner\Downloads\P_j8FO4g.jpg_large2021-06-20 17:42 - 2021-06-20 17:42 - 000288530 _____ C:\Users\Owner\Downloads\Rv9loFLH.jpg_large2021-06-18 15:43 - 2021-06-18 15:58 - 000118784 ____H C:\Users\Owner\Documents\~WRL0005.tmp2021-06-17 22:49 - 2021-06-17 22:50 - 000235479 _____ C:\Users\Owner\Downloads\PCd2vSik.jpg_large2021-06-17 22:03 - 2021-06-17 22:03 - 000185468 _____ C:\Users\Owner\Downloads\aLskaxLk.jpg_large2021-06-15 22:56 - 2021-06-15 22:56 - 000189037 _____ C:\Users\Owner\Downloads\Fvp7zVXf.jpg_large2021-06-13 22:26 - 2021-06-13 22:26 - 000208491 _____ C:\Users\Owner\Downloads\-Axn4wTw.jpg_large2021-06-11 01:39 - 2021-06-19 01:52 - 000015269 _____ C:\Users\Owner\Documents\fgbback.txt2021-06-11 01:30 - 2021-06-11 01:30 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb2021-06-11 01:30 - 2021-06-11 01:30 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb2021-06-11 01:30 - 2021-06-11 01:30 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl2021-06-11 01:30 - 2021-06-11 01:30 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl2021-06-11 01:29 - 2021-06-11 01:29 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll2021-06-11 01:29 - 2021-06-11 01:29 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi2021-06-11 01:29 - 2021-06-11 01:29 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi2021-06-11 01:29 - 2021-06-11 01:29 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi2021-06-11 01:29 - 2021-06-11 01:29 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll2021-06-11 01:29 - 2021-06-11 01:29 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv2021-06-11 01:29 - 2021-06-11 01:29 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe2021-06-11 01:29 - 2021-06-11 01:29 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim2021-06-11 01:28 - 2021-06-11 01:28 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll2021-06-11 01:28 - 2021-06-11 01:28 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll2021-06-11 01:28 - 2021-06-11 01:28 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv2021-06-11 01:28 - 2021-06-11 01:28 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll2021-06-11 01:28 - 2021-06-11 01:28 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe2021-06-11 01:28 - 2021-06-11 01:28 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys2021-06-10 02:30 - 2021-06-10 02:30 - 000403450 _____ C:\Users\Owner\Downloads\How to Wed a Courtesan (Mills & Boon Histo - Madeline Martin.epub2021-06-10 02:30 - 2021-06-10 02:30 - 000345578 _____ C:\Users\Owner\Downloads\West End Earl - Bethany Bennett.epub2021-06-08 22:02 - 2021-06-08 22:03 - 000303788 _____ C:\TDSSKiller.3.1.0.28_08.06.2021_22.02.07_log.txt2021-06-07 23:48 - 2021-06-07 23:48 - 000028426 _____ C:\Users\Owner\Downloads\HOSMHgPD.jpg_small2021-06-04 13:31 - 2021-06-04 13:31 - 000244694 _____ C:\Users\Owner\Downloads\YPErjJpz.jpg_large2021-06-03 18:09 - 2021-06-03 18:09 - 004459712 _____ C:\Users\Owner\Downloads\The Bookseller's Secret.pdf2021-06-03 18:09 - 2021-06-03 18:09 - 000329910 _____ C:\Users\Owner\Downloads\Serving Sin - Angelina M. Lopez.epub2021-06-03 18:08 - 2021-06-03 18:08 - 007941844 _____ C:\Users\Owner\Downloads\The Love Story of Missy Carmichael.pdf2021-06-03 18:08 - 2021-06-03 18:08 - 005777427 _____ C:\Users\Owner\Downloads\The Holiday Swap.pdf2021-06-03 18:08 - 2021-06-03 18:08 - 002680373 _____ C:\Users\Owner\Downloads\The Ice Swani.pdf2021-06-03 18:08 - 2021-06-03 18:08 - 000736293 _____ C:\Users\Owner\Downloads\Within These Wicked Walls_ A Novel - Lauren Blackwood.epub2021-06-03 18:08 - 2021-06-03 18:08 - 000478241 _____ C:\Users\Owner\Downloads\The Matchmaker's Lonely Heart - Nancy Campbell Allen.epub2021-06-03 18:08 - 2021-06-03 18:08 - 000471180 _____ C:\Users\Owner\Downloads\The Reading List - Sara Nisha Adams.epub2021-06-03 18:08 - 2021-06-03 18:08 - 000305186 _____ C:\Users\Owner\Downloads\The Collective - Alison Gaylin.epub2021-06-03 18:08 - 2021-06-03 18:08 - 000265981 _____ C:\Users\Owner\Downloads\Death of a Red-Hot Rancher - Mimi Granger.epub2021-06-03 12:24 - 2021-06-03 13:19 - 000109703 _____ C:\Users\Owner\Downloads\bb755537-bdd3-4b8f-8ae5-5715166dee15.jpeg2021-06-02 23:08 - 2021-06-02 23:08 - 000260847 _____ C:\Users\Owner\Downloads\Yp91Ik0-.jpg_large2021-06-02 23:08 - 2021-06-02 23:08 - 000143098 _____ C:\Users\Owner\Downloads\ACUj646n.jpg_large2021-06-02 04:24 - 2021-06-02 04:24 - 000303350 _____ C:\TDSSKiller.3.1.0.28_02.06.2021_04.24.08_log.txt2021-06-02 04:05 - 2021-06-06 21:21 - 000005086 _____ C:\Users\Owner\Documents\candice.txt2021-05-31 14:02 - 2021-05-31 14:02 - 000261430 _____ C:\Users\Owner\Downloads\5ok-Eyf5.jpg_large2021-05-30 20:01 - 2021-05-30 20:01 - 000121513 _____ C:\Users\Owner\Downloads\bYnahUvO.jpg_large2021-05-26 18:22 - 2021-05-26 18:22 - 000488400 _____ C:\Users\Owner\Downloads\The Railway Countess - Julia Justiss.epub2021-05-23 19:34 - 2021-05-23 19:34 - 000340254 _____ C:\Users\Owner\Downloads\EEu50W4s.jpg_large2021-05-23 00:11 - 2021-05-23 00:11 - 022838293 _____ C:\Users\Owner\Downloads\FFLIFESTORY2021001_ReviewCopy.pdf2021-05-21 19:33 - 2021-05-21 19:33 - 000322916 _____ C:\Users\Owner\Downloads\02Ini77I.jpg_large2021-05-19 13:02 - 2021-05-19 13:02 - 013336252 _____ C:\Users\Owner\Downloads\SMSPIDERSHADOW2021002_ReviewCopy.pdf2021-05-18 01:49 - 2021-05-18 01:49 - 000419068 _____ C:\Users\Owner\Downloads\Just-Folking-Around-Generic.epub2021-05-17 15:46 - 2021-05-17 15:46 - 000067140 _____ C:\Users\Owner\Downloads\v1.bjsyNjEwMTgzO2o7MTg4NDA7MTIwMDsyODgwOzE0NDA2021-05-16 03:34 - 2021-05-16 03:34 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll2021-05-16 03:33 - 2021-05-16 03:33 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE2021-05-16 03:33 - 2021-05-16 03:33 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll2021-05-16 03:32 - 2021-05-16 03:32 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe2021-05-16 03:31 - 2021-05-16 03:31 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe2021-05-16 03:31 - 2021-05-16 03:31 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe2021-05-14 13:49 - 2021-05-14 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN2021-05-13 18:13 - 2021-05-13 18:14 - 000668308 _____ C:\Users\Owner\Downloads\The Missing Hours - Julia Dahl.epub2021-05-13 18:13 - 2021-05-13 18:13 - 003975181 _____ C:\Users\Owner\Downloads\A Spot of Trouble (1).pdf2021-05-13 15:38 - 2021-05-13 15:38 - 000001376 _____ C:\Users\Owner\Downloads\9781982137656.acsm2021-05-13 15:29 - 2021-05-13 15:29 - 005632512 _____ C:\Users\Owner\Downloads\Tenderness.pdf2021-05-13 15:29 - 2021-05-13 15:29 - 003981785 _____ C:\Users\Owner\Downloads\A Spot of Trouble.pdf2021-05-13 15:29 - 2021-05-13 15:29 - 001193439 _____ C:\Users\Owner\Downloads\The Passing Stormi.pdf2021-05-13 15:29 - 2021-05-13 15:29 - 000999395 _____ C:\Users\Owner\Downloads\Never Say Never - Justine Manzano.epub2021-05-13 15:29 - 2021-05-13 15:29 - 000526514 _____ C:\Users\Owner\Downloads\Radha & Jai's Recipe for Romance - Nisha. Sharma.epub2021-05-13 15:29 - 2021-05-13 15:29 - 000453201 _____ C:\Users\Owner\Downloads\Catch Us When We Fall - Juliette Fay.epub2021-05-13 15:29 - 2021-05-13 15:29 - 000312479 _____ C:\Users\Owner\Downloads\Men Are Frogs - Saranna DeWylde.epub2021-05-13 15:28 - 2021-05-13 15:28 - 000772773 _____ C:\Users\Owner\Downloads\Bright Ruined Things - Samantha Cohoe.epub2021-05-13 15:28 - 2021-05-13 15:28 - 000419706 _____ C:\Users\Owner\Downloads\Any Place but Here - Sarah Van Name.epub2021-05-13 15:26 - 2021-05-13 15:26 - 000776921 _____ C:\Users\Owner\Downloads\Island Queen - Vanessa Riley.epub2021-05-13 11:00 - 2021-05-13 11:00 - 000001376 _____ C:\Users\Owner\Downloads\My Heart is a Chainsaw (1).acsm2021-05-10 21:17 - 2021-05-10 21:17 - 000213769 _____ C:\Users\Owner\Downloads\8DRDjgov.jpg_large2021-05-08 01:38 - 2021-05-08 01:38 - 000259541 _____ C:\Users\Owner\Downloads\Dr-7ujRq.jpg_large2021-05-03 14:52 - 2021-05-03 14:52 - 000052428 _____ C:\Users\Owner\Downloads\LawOrder_Logo_1920x1080.webp2021-05-03 12:04 - 2021-05-03 12:04 - 000001376 _____ C:\Users\Owner\Downloads\My Heart is a Chainsaw.acsm2021-05-01 13:14 - 2021-05-01 13:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security2021-05-01 00:53 - 2021-05-01 00:53 - 000692905 _____ C:\Users\Owner\Downloads\CUFcbusg.jpeg2021-05-01 00:53 - 2021-05-01 00:53 - 000317370 _____ C:\Users\Owner\Downloads\MWVygEzw.jpeg2021-05-01 00:53 - 2021-05-01 00:53 - 000281751 _____ C:\Users\Owner\Downloads\k-zDdgmg.jpeg2021-04-26 13:38 - 2021-04-26 13:38 - 000109560 _____ C:\Users\Owner\Downloads\donna-chambers-1573662595.jpeg2021-04-22 13:29 - 2021-04-22 13:29 - 002504715 _____ C:\Users\Owner\Downloads\Our Violent Ends.pdf2021-04-22 11:57 - 2021-04-22 11:57 - 003747959 _____ C:\Users\Owner\Downloads\The Hive.pdf2021-04-22 11:23 - 2021-04-22 11:23 - 004976090 _____ C:\Users\Owner\Downloads\Ruff and Tumble.pdf2021-04-22 11:23 - 2021-04-22 11:23 - 003145378 _____ C:\Users\Owner\Downloads\New Girl in Little Cove.pdf2021-04-22 11:23 - 2021-04-22 11:23 - 000728986 _____ C:\Users\Owner\Downloads\A Duke in Time - Janna MacGregor.epub2021-04-22 11:23 - 2021-04-22 11:23 - 000727750 _____ C:\Users\Owner\Downloads\The Show Girl - Nicola Harrison.epub2021-04-22 11:23 - 2021-04-22 11:23 - 000708215 _____ C:\Users\Owner\Downloads\Anchored Hearts - Priscilla Oliveras.epub2021-04-22 11:23 - 2021-04-22 11:23 - 000432112 _____ C:\Users\Owner\Downloads\Beth and Amy - Virginia Kantra.epub2021-04-22 11:23 - 2021-04-22 11:23 - 000356829 _____ C:\Users\Owner\Downloads\The Rehearsals - Annette Christie.epub2021-04-22 11:23 - 2021-04-22 11:23 - 000302211 _____ C:\Users\Owner\Downloads\So Many Beginnings_ A Little Women Remix - Bethany C. Morrow.epub2021-04-22 11:23 - 2021-04-22 11:23 - 000283435 _____ C:\Users\Owner\Downloads\The Hellion's Waltz_ Feminine Pursuits - Olivia Waite.epub2021-04-22 11:22 - 2021-04-22 11:22 - 000624115 _____ C:\Users\Owner\Downloads\Emily's House - Amy Belding Brown.epub2021-04-21 13:00 - 2021-04-21 13:00 - 000000000 ____D C:\Users\Owner\Downloads\Peanuts_OGN_ScotlandBound_SC_PRESS2021-04-21 12:57 - 2021-04-21 12:57 - 066967142 _____ C:\Users\Owner\Downloads\Peanuts_OGN_ScotlandBound_SC_PRESS.zip2021-04-20 19:50 - 2021-04-20 19:50 - 000012770 _____ C:\Users\Owner\Downloads\467522.webp2021-04-19 01:17 - 2021-04-19 01:17 - 001974821 _____ C:\Users\Owner\Downloads\Highlander's Secret Son (Not for Resale), The- Jeanine Englert.epub2021-04-19 01:13 - 2021-04-19 01:13 - 021183854 _____ C:\Users\Owner\Downloads\SMSPIDERSHADOW2021001_ReviewCopy.pdf2021-04-15 22:38 - 2021-04-15 22:38 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll2021-04-15 14:13 - 2021-04-15 14:14 - 000014411 _____ C:\Users\Owner\Downloads\Melissa Lemieux- Invoice 04-29-21.xlsx2021-04-15 10:37 - 2021-04-15 10:37 - 000014854 _____ C:\Users\Owner\Downloads\Melissa Lemieux- Invoice 04-15-21 (1).xlsx2021-04-15 10:35 - 2021-04-15 14:35 - 000014396 _____ C:\Users\Owner\Downloads\Melissa Lemieux- Invoice 04-15-21.xlsx2021-04-14 17:41 - 2021-04-14 17:41 - 002932517 _____ C:\Users\Owner\Downloads\NAN-S8Stinger.mp42021-04-13 10:34 - 2021-04-13 10:34 - 005090231 _____ C:\Users\Owner\Downloads\Twice Shy.pdf2021-04-13 10:34 - 2021-04-13 10:34 - 000884514 _____ C:\Users\Owner\Downloads\An Earl, the Girl, and a Toddler.pdf2021-04-12 19:27 - 2021-04-12 19:27 - 000143524 _____ C:\Users\Owner\Downloads\c2d475aefc2b379215398fa3fd060e54 (1).webp2021-04-12 19:14 - 2021-04-12 19:14 - 000490774 _____ C:\Users\Owner\Downloads\sub-buzz-733-1575615146-4.webp2021-04-09 15:36 - 2021-04-09 15:36 - 000356504 _____ C:\Users\Owner\Downloads\Ariadne - Jennifer Saint.epub2021-04-07 20:10 - 2021-04-07 20:10 - 000473118 _____ C:\Users\Owner\Downloads\Sister of the Bollywood Bride - Nandini Bajpai.epub2021-04-07 20:08 - 2021-04-07 20:08 - 000443560 _____ C:\Users\Owner\Downloads\Satisfaction Guaranteed - Karelia Stetz-Waters.epub2021-04-07 10:25 - 2021-04-07 10:25 - 000309104 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys2021-04-07 10:24 - 2021-04-17 02:29 - 000224880 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys2021-04-07 10:24 - 2021-04-07 10:24 - 000263888 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys2021-04-07 10:24 - 2021-04-07 10:24 - 000115744 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys2021-04-06 15:29 - 2021-04-06 15:29 - 000499309 _____ C:\Users\Owner\Downloads\png2021-04-04 22:15 - 2021-04-04 22:15 - 000000000 ____D C:\WINDOWS\SysWOW64\%Data%2021-04-03 19:00 - 2021-04-03 19:00 - 000187410 _____ C:\Users\Owner\Downloads\ss3570112_-_photograph_of_penny_marshall_cindy_williams_laverne_&_shirley_available_in_4_sizes_framed_or_unframed_buy_now_at_starstills__12612__25102.1394504741.webp2021-04-03 19:00 - 2021-04-03 19:00 - 000018270 _____ C:\Users\Owner\Downloads\liberty_6.webp2021-04-03 14:33 - 2021-04-03 14:34 - 312190167 _____ C:\Users\Owner\Downloads\236568.mp42021-04-02 00:10 - 2021-04-02 00:11 - 000000000 ____D C:\WINDOWS\Minidump2021-04-02 00:10 - 2021-04-02 00:10 - 001233156 _____ C:\WINDOWS\Minidump\040221-19578-01.dmp2021-04-01 15:06 - 2021-04-01 15:07 - 000303838 _____ C:\TDSSKiller.3.1.0.28_01.04.2021_15.06.20_log.txt2021-04-01 15:05 - 2021-04-01 15:06 - 000054900 _____ C:\TDSSKiller.3.1.0.28_01.04.2021_15.05.34_log.txt2021-04-01 14:40 - 2021-04-01 14:40 - 000349217 _____ C:\Users\Owner\Downloads\laverne-and-shirley-lenny-squiggy.jpeg2021-03-30 17:06 - 2021-03-30 17:06 - 000006914 _____ C:\Users\Owner\Downloads\Name- Invoice 03-30-21.xlsx2021-03-30 17:05 - 2021-03-30 17:05 - 000006914 _____ C:\Users\Owner\Downloads\Name2 - Invoice 03-30-21.xlsx2021-03-30 15:02 - 2021-03-30 15:02 - 000143524 _____ C:\Users\Owner\Downloads\c2d475aefc2b379215398fa3fd060e54.webp2021-03-30 15:01 - 2021-03-30 15:01 - 000098214 _____ C:\Users\Owner\Downloads\p-1-futurama.webp2021-03-28 17:02 - 2021-03-28 17:04 - 000304004 _____ C:\TDSSKiller.3.1.0.28_28.03.2021_17.02.42_log.txt2021-03-28 16:56 - 2021-03-28 16:56 - 008534696 _____ (Malwarebytes) C:\Users\Owner\Desktop\adwcleaner_8.2.exe2021-03-25 00:28 - 2021-03-25 00:28 - 004136659 _____ C:\Users\Owner\Downloads\w9 mml.pdf2021-03-25 00:28 - 2021-03-25 00:28 - 003884752 _____ C:\Users\Owner\Downloads\w8 mml.pdf2021-03-25 00:28 - 2021-03-25 00:28 - 003654508 _____ C:\Users\Owner\Downloads\agreement P1.pdf2021-03-25 00:28 - 2021-03-25 00:28 - 002707162 _____ C:\Users\Owner\Downloads\agreement P6.pdf2021-03-25 00:28 - 2021-03-25 00:28 - 000017938 _____ C:\Users\Owner\Downloads\Name Freelancer ACH-Wire Form.xlsx2021-03-24 11:18 - 2021-03-24 11:18 - 000090931 _____ C:\Users\Owner\Downloads\MVA90197_759x.jpeg2021-03-24 10:12 - 2021-03-24 10:12 - 046046246 _____ C:\Users\Owner\Downloads\DPOOLNERDY302021001_ReviewCopy.pdf2021-03-24 08:22 - 2021-03-24 08:22 - 000132144 _____ C:\Users\Owner\Downloads\Form W-9.pdf2021-03-24 08:22 - 2021-03-24 08:22 - 000062553 _____ C:\Users\Owner\Downloads\Form W-8BEN (Individual).pdf2021-03-24 08:21 - 2021-03-24 08:21 - 000299331 _____ C:\Users\Owner\Downloads\Form W-8BEN-E (Entity).pdf2021-03-24 08:21 - 2021-03-24 08:21 - 000006985 _____ C:\Users\Owner\Downloads\Trial Shift Invoice Template.xlsx2021-03-24 08:20 - 2021-03-24 08:20 - 000101896 _____ C:\Users\Owner\Downloads\Static Media Freelance Writer Agreement.pdf2021-03-24 08:20 - 2021-03-24 08:20 - 000016251 _____ C:\Users\Owner\Downloads\Static Media Freelancer ACH-Wire Form.xlsx2021-03-24 08:20 - 2021-03-24 08:20 - 000006815 _____ C:\Users\Owner\Downloads\Recipe Invoice Template.xlsx ==================== Three months (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-06-22 17:58 - 2019-07-03 15:57 - 000017005 _____ C:\Users\Owner\Desktop\FRST.txt2021-06-22 17:57 - 2019-07-04 17:19 - 000000000 ____D C:\FRST2021-06-22 17:56 - 2019-11-03 10:35 - 002300416 _____ (Farbar) C:\Users\Owner\Desktop\FRST642.exe2021-06-22 17:56 - 2019-09-28 14:40 - 000000000 ____D C:\Users\Owner\Desktop\FRST-OlderVersion2021-06-22 17:56 - 2019-07-03 15:58 - 000001624 _____ C:\Users\Owner\Desktop\Rkill.txt2021-06-22 17:47 - 2014-07-25 07:09 - 000000000 ____D C:\Users\Owner\Documents\My PSP Files2021-06-22 17:44 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft2021-06-22 17:39 - 2019-07-10 14:15 - 000024773 _____ C:\Users\Owner\Documents\Keeper.txt2021-06-22 17:07 - 2019-07-04 13:02 - 000029746 _____ C:\Users\Owner\AppData\Roaming\wklnhst.dat2021-06-22 11:53 - 2019-07-07 14:25 - 000029717 _____ C:\Users\Owner\Documents\backup2.txt2021-06-22 10:20 - 2020-08-09 23:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy2021-06-21 12:29 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\AppReadiness2021-06-21 12:28 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps2021-06-20 10:51 - 2020-05-23 04:15 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk2021-06-20 10:51 - 2020-05-23 04:15 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk2021-06-20 10:51 - 2020-05-23 04:15 - 000002276 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk2021-06-19 23:27 - 2021-01-24 12:15 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools2021-06-17 16:24 - 2019-07-04 11:10 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk2021-06-17 16:24 - 2019-07-04 11:10 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk2021-06-17 16:24 - 2019-07-04 11:10 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk2021-06-16 15:39 - 2019-12-07 05:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM2021-06-15 10:57 - 2021-02-19 21:09 - 000096008 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpnpflt.sys2021-06-14 11:30 - 2019-07-03 16:59 - 000000000 __SHD C:\Users\Owner\IntelGraphicsProfiles2021-06-13 12:50 - 2020-08-10 00:13 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-568421124-514302383-3346671423-10012021-06-13 12:50 - 2020-08-09 23:56 - 000002363 _____ C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk2021-06-13 12:50 - 2019-07-03 15:19 - 000000000 ___RD C:\Users\Owner\OneDrive2021-06-12 12:53 - 2019-12-07 05:13 - 000000000 ____D C:\WINDOWS\INF2021-06-11 23:00 - 2020-04-17 19:56 - 000000000 ____D C:\Users\Owner\Documents\Sound recordings2021-06-11 20:40 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel2021-06-11 20:39 - 2020-08-10 00:06 - 000795738 _____ C:\WINDOWS\system32\PerfStringBackup.INI2021-06-11 20:32 - 2020-08-10 00:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT2021-06-11 20:32 - 2020-08-09 23:54 - 000353840 _____ C:\WINDOWS\system32\FNTCACHE.DAT2021-06-11 20:32 - 2020-08-09 23:54 - 000008192 ___SH C:\DumpStack.log.tmp2021-06-11 20:32 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\ServiceState2021-06-11 20:32 - 2019-12-07 05:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\PrintDialog2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SystemResources2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\oobe2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\migwiz2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\et-EE2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\Dism2021-06-11 20:31 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\bcastdvr2021-06-11 01:39 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\CbsTemp2021-06-11 01:08 - 2019-07-03 15:26 - 000000000 ____D C:\WINDOWS\system32\MRT2021-06-11 01:04 - 2019-07-03 15:26 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe2021-06-02 04:51 - 2020-03-27 20:01 - 000000000 ____D C:\Users\Owner\AppData\Local\ElevatedDiagnostics2021-05-25 07:48 - 2021-01-24 12:15 - 000725304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll2021-05-25 07:48 - 2021-01-24 12:15 - 000470328 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll2021-05-24 12:45 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\NDF ==================== Files in the root of some directories ======== 2019-07-04 13:02 - 2021-06-22 17:07 - 000029746 _____ () C:\Users\Owner\AppData\Roaming\wklnhst.dat2019-12-02 16:46 - 2020-12-09 14:23 - 000003584 _____ () C:\Users\Owner\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.)==================== BCD ================================ Firmware Boot Manager---------------------identifier{fwbootmgr}displayorder{bootmgr}{56749d7c-9de7-11e9-82be-806e6f6e6963}{1d915c72-9de6-11e9-917e-cdf6db9cb39e}{1d915c73-9de6-11e9-917e-cdf6db9cb39e}timeout 0 Windows Boot Manager--------------------identifier{bootmgr}devicepartition=\Device\HarddiskVolume2path\EFI\Microsoft\Boot\bootmgfw.efidescription Windows Boot Managerlocaleen-USinherit {globalsettings}default {current}resumeobject{acf7e9db-dade-11ea-818a-f2da3effa070}displayorder{current}toolsdisplayorder {memdiag}timeout 30 Firmware Application (101fffff)-------------------------------identifier{1d915c72-9de6-11e9-917e-cdf6db9cb39e}description EFI USB Device Firmware Application (101fffff)-------------------------------identifier{1d915c73-9de6-11e9-917e-cdf6db9cb39e}description EFI DVD/CDROM Firmware Application (101fffff)-------------------------------identifier{1d915c74-9de6-11e9-917e-cdf6db9cb39e}deviceunknowndescription USB Hard Drive (UEFI) - PNY USB 2.0 FD Firmware Application (101fffff)-------------------------------identifier{56749d7c-9de7-11e9-82be-806e6f6e6963}description Internal Hard Disk or Solid State Disk Windows Boot Loader-------------------identifier{current}devicepartition=C:path\WINDOWS\system32\winload.efidescription Windows 10localeen-USinherit {bootloadersettings}recoverysequence{acf7e9dd-dade-11ea-818a-f2da3effa070}displaymessageoverrideRecoveryrecoveryenabled Yesisolatedcontext Yesallowedinmemorysettings 0x15000075osdevicepartition=C:systemroot\WINDOWSresumeobject{acf7e9db-dade-11ea-818a-f2da3effa070}nxOptInbootmenupolicyStandard Windows Boot Loader-------------------identifier{acf7e9dd-dade-11ea-818a-f2da3effa070}deviceramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{acf7e9de-dade-11ea-818a-f2da3effa070}path\windows\system32\winload.efidescription Windows Recovery Environmentlocaleen-USinherit {bootloadersettings}displaymessageRecoveryosdeviceramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{acf7e9de-dade-11ea-818a-f2da3effa070}systemroot\windowsnxOptInbootmenupolicyStandardwinpe Yes Resume from Hibernate---------------------identifier{acf7e9db-dade-11ea-818a-f2da3effa070}devicepartition=C:path\WINDOWS\system32\winresume.efidescription Windows Resume Applicationlocaleen-USinherit {resumeloadersettings}recoverysequence{acf7e9dd-dade-11ea-818a-f2da3effa070}recoveryenabled Yesisolatedcontext Yesallowedinmemorysettings 0x15000075filedevicepartition=C:filepath\hiberfil.sysbootmenupolicyStandarddebugoptionenabledNo Windows Memory Tester---------------------identifier{memdiag}devicepartition=\Device\HarddiskVolume2path\EFI\Microsoft\Boot\memtest.efidescription Windows Memory Diagnosticlocaleen-USinherit {globalsettings}badmemoryaccess Yes EMS Settings------------identifier{emssettings}bootems No Debugger Settings-----------------identifier{dbgsettings}debugtype Local RAM Defects-----------identifier{badmemory} Global Settings---------------identifier{globalsettings}inherit {dbgsettings}{emssettings}{badmemory}integrityservices Enable Boot Loader Settings--------------------identifier{bootloadersettings}inherit {globalsettings}{hypervisorsettings} Hypervisor Settings-------------------identifier{hypervisorsettings}hypervisordebugtype Serialhypervisordebugport 1hypervisorbaudrate115200 Resume Loader Settings----------------------identifier{resumeloadersettings}inherit {globalsettings} Device options--------------identifier{acf7e9de-dade-11ea-818a-f2da3effa070}description Windows Recoveryramdisksdidevicepartition=\Device\HarddiskVolume5ramdisksdipath\Recovery\WindowsRE\boot.sdi ==================== End of FRST.txt ======================== Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-06-2021Ran by Owner (22-06-2021 18:04:13)Running from C:\Users\Owner\DesktopWindows 10 Home Version 20H2 19042.1052 (X64) (2020-08-10 04:13:55)Boot Mode: Normal============================================================================== Accounts: ============================= Administrator (S-1-5-21-568421124-514302383-3346671423-500 - Administrator - Disabled)DefaultAccount (S-1-5-21-568421124-514302383-3346671423-503 - Limited - Disabled)Guest (S-1-5-21-568421124-514302383-3346671423-501 - Limited - Disabled)Owner (S-1-5-21-568421124-514302383-3346671423-1001 - Administrator - Enabled) => C:\Users\OwnerWDAGUtilityAccount (S-1-5-21-568421124-514302383-3346671423-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AV: Kaspersky Internet Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}FW: Kaspersky Internet Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58}FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.10 - Adobe Systems Incorporated)Bejeweled 2 Deluxe 1.1 (HKLM-x32\...\Bejeweled 2 Deluxe 1.1) (Version: 1.1 - PopCap Games)Bejeweled Twist (HKLM-x32\...\Bejeweled Twist) (Version:- PopCap Games)Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.114 - Google LLC)Jasc Animation Shop 3 (HKLM-x32\...\{7C4196CA-CA41-4F34-9C08-7724E7705D52}) (Version: 3.11 - Jasc Software Inc)Jasc Paint Shop Pro 9 (HKLM-x32\...\{F843C6A3-224D-4615-94F8-3C461BD9AEA0}) (Version: 9.00.0000 - Jasc Software Inc)Kaspersky Internet Security (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) HiddenKaspersky Internet Security (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky)Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) HiddenKaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) HiddenKaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky)Malwarebytes version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.54 - Microsoft Corporation)Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:- Microsoft)Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)Microsoft OneDrive (HKU\S-1-5-21-568421124-514302383-3346671423-1001\...\OneDriveSetup.exe) (Version: 21.099.0516.0003 - Microsoft Corporation)Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)Microsoft Works (HKLM-x32\...\{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}) (Version: 08.04.0623 - Microsoft Corporation)Microsoft Works 2005 Setup Launcher (HKLM-x32\...\Works2005Setup) (Version:- )Microsoft Works Suite Add-in for Microsoft Word (HKLM-x32\...\{CB54ABA8-D67F-47AD-A76C-2631BADA9FE5}) (Version: 8.0.0.0000 - Microsoft Corporation)Peggle Deluxe 1.0 (HKLM-x32\...\Peggle Deluxe 1.0) (Version: 1.0 - PopCap Games)Peggle Nights (HKLM-x32\...\Peggle Nights) (Version:- PopCap Games)Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:- Microsoft)Zuma Deluxe 1.0.0.0 (HKLM-x32\...\Zuma Deluxe 1.0.0.0) (Version: 1.0.0.0 - PopCap Games)Zuma's Revenge! (HKLM-x32\...\Zuma's Revenge!) (Version:- PopCap Games) Packages:=========Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-06] (Microsoft Corporation) [MS Ad]Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-06] (Microsoft Corporation) [MS Ad]Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-21] (Microsoft Studios) [MS Ad]Photos Add-on -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-16] (Microsoft Corporation) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-568421124-514302383-3346671423-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)CustomCLSID: HKU\S-1-5-21-568421124-514302383-3346671423-1001_Classes\CLSID\{D9AC5E73-BB10-467b-B884-AA1E475C51F5}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-04-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-04-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-04-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>-> No FileContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-04-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) ==================== Codecs (Whitelisted) ==================== ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\Owner\Desktop\Cut the Rope.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->--profile-directory=Default --app-id=gkddaofiamhgfjmaccfcfpfolpgbeomj ==================== Loaded Modules (Whitelisted) ============= 2004-08-16 09:00 - 2004-08-16 09:00 - 000331776 ____R (Accusoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\fpxig.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000860160 ____R (AccuSoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\igCAD13d.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000081920 ____R (AccuSoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\igCGM13d.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001937408 ____R (AccuSoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\igcore13d.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000036864 ____R (AccuSoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\igDGN13d.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000126976 ____R (AccuSoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\igFPX13d.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000090112 ____R (AccuSoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\igHPGL13d.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000249856 ____R (AccuSoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\igJPEG2K13d.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000110592 ____R (AccuSoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\igLZW13d.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000086016 ____R (Accusoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JPEGACC.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000212480 ____R (Eastman Kodak) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\PCDLIB32.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001105920 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdArtistic.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000253952 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdBevels.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000110592 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdBrowse.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000471040 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdClipboard.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000745472 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdColor.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000081920 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdExternal.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001335296 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdFile.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000630784 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdGeometry.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000143360 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdJGL.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001048576 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdLayers.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000184320 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdLighting.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001073152 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdNonGraphic.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001048576 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdPhoto.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000266240 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdPluginHost.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000237568 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdPrint.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000303104 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdPyScript.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000749568 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdSelections.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000847872 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdStandard.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000430080 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdTexture.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000278528 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdVector.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000462848 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascCmdWeb.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000733184 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascToolArt.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001548288 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascToolObject.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001380352 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascToolPaint.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000401408 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascToolSelect.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000684032 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascToolStandard.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000421888 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascToolText.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000716800 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Commands\JascToolWarp.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000512000 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascBrowser.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000042496 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascBrowserrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000131072 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascBrowserUtil.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000038912 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascBrowserUtilrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000249856 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdArtisticrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000053248 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdBevelsrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000029184 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdBrowserc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000081920 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdClipboardrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000413696 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdColorrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000034816 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdExternalrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000913408 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdFilerc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000176128 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdGeometryrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000049152 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdJGLrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000217088 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdLayersrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000049152 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdLightingrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 002318336 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdNonGraphicrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 002002944 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdPhotorc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000024576 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdPluginHostrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000090112 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdPrintrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000331776 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdProc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000036352 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdProcrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000114688 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdPyScriptrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000274432 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdSelectionsrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000401408 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdStandardrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000090112 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdTexturerc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000106496 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdVectorrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000081920 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCmdWebrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000102400 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCMYK.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000029184 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCMYKrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000081920 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascColorMgr.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000022016 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascColorMgrrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001503232 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCommandBase.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000131072 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascCommandBaserc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001146880 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascControls.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000139264 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascControlsrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000022016 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascErrorCodes.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000061440 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascErrorCodesrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 004730880 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascFileFormats.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000098304 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascFileFormatsrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000925696 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascFileUtil.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000048640 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascFileUtilrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001843200 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascGUI.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000077824 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascGUIrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000094208 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascHistoryPalette.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000032256 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascHistoryPaletterc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000030208 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascLanguage.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000180224 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascLayerPalette.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000094208 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascLayerPaletterc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000077824 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascLearningCenter.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000037376 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascLearningCenterrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000479232 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascMaterialPalette.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000086016 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascMaterialPaletterc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000033792 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascMemory.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000462848 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascMIP.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000061440 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascMIPrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000106496 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascPreferences.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000061440 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascPreferencesrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 001163264 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascRender.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000019968 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascSingletonMgr.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000081920 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascToolArtrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000851968 ____R (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascToolBase.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000155648 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascToolBaserc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000450560 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascToolObjectrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000172032 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascToolPaintrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000069632 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascToolSelectrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000106496 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascToolStandardrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000077824 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascToolTextrc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000094208 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascToolWarprc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 004227072 _____ (Jasc Software, Inc.) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Paint Shop ProRC.dll2008-08-25 22:50 - 2008-08-25 22:50 - 000155648 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VBA\VBA6\1033\VBE6INTL.DLL2004-08-16 09:00 - 2004-08-16 09:00 - 000089088 ____R (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\ATL71.DLL2004-08-16 09:00 - 2004-08-16 09:00 - 001060864 ____R (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\MFC71.DLL2004-08-16 09:00 - 2004-08-16 09:00 - 000499712 ____R (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\MSVCP71.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000348160 ____R (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\MSVCR71.dll2003-11-21 17:45 - 2003-11-21 17:45 - 000499712 ____R (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Microsoft Works\MSVCP71.dll2003-11-21 17:45 - 2003-11-21 17:45 - 000348160 ____R (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Microsoft Works\MSVCR71.dll2004-07-02 20:14 - 2004-07-02 20:14 - 000196608 _____ (Microsoft® Corporation) [File not signed] [File is in use] C:\Program Files (x86)\Microsoft Works\WKWDADDN.DLL2004-06-23 20:07 - 2004-06-23 20:07 - 000233472 _____ (Microsoft® Corporation) [File not signed] C:\Program Files (x86)\Microsoft Works\1033\wkgl80.dll2004-06-23 20:26 - 2004-06-23 20:26 - 000086016 _____ (Microsoft® Corporation) [File not signed] C:\Program Files (x86)\Microsoft Works\1033\WkWdLang.dll2004-06-23 20:05 - 2004-06-23 20:05 - 000110592 _____ (Microsoft® Corporation) [File not signed] C:\Program Files (x86)\Microsoft Works\WkWat.dll2004-06-23 20:05 - 2004-06-23 20:05 - 000106496 _____ (Microsoft® Corporation) [File not signed] C:\Program Files (x86)\Microsoft Works\WkWbl.dll2004-06-23 20:05 - 2004-06-23 20:05 - 000110592 _____ (Microsoft® Corporation) [File not signed] C:\Program Files (x86)\Microsoft Works\WkWinUni.dll2004-06-23 20:26 - 2004-06-23 20:26 - 000011264 _____ (Microsoft® Corporation) [File not signed] C:\Program Files (x86)\Microsoft Works\workssvc.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000999424 ____R (PythonLabs at Zope Corporation) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\JascPython23.dll2004-08-16 09:00 - 2004-08-16 09:00 - 000299008 ____R (The University of New South Wales) [File not signed] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\kdu_v32R.dll ==================== Alternate Data Streams (Whitelisted) ======== ==================== Safe Mode (Whitelisted) ================== ==================== Association (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation) [File not signed]Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed] ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2019-03-19 00:49 - 2019-03-19 00:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKU\S-1-5-21-568421124-514302383-3346671423-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpgDNS Servers: 75.75.75.75 - 75.75.76.76HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{2C1788AA-72C1-471B-B4F0-8289C7B8C56F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)FirewallRules: [{0D655211-40E6-4323-B0F5-C3DEA0211DE1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)FirewallRules: [{BD62727A-9E0E-4006-8192-C9CC00410D27}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)FirewallRules: [{89899B3B-17F8-4E86-8695-E0D4D81F2AF0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)FirewallRules: [{6E5BF485-0F30-44B3-BDA5-B1E807D3D0E7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Restore Points ========================= 10-06-2021 01:02:03 Scheduled Checkpoint11-06-2021 01:08:10 Windows Modules Installer19-06-2021 02:23:29 Scheduled Checkpoint ==================== Faulty Device Manager Devices ============ Name: Intel® Trusted Execution Engine Interface Description: Intel® Trusted Execution Engine Interface Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}Manufacturer: IntelService: TXEIx64Problem: : This device cannot start. (Code10)Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.==================== Event log errors: ======================== Application errors:==================Error: (06/21/2021 07:18:37 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Paint Shop Pro 9.exe, version: 9.0.0.0, time stamp: 0x41210e3bFaulting module name: igDGN13d.dll_unloaded, version: 13.3.1.0, time stamp: 0x40f54a5aException code: 0xc0000005Fault offset: 0x00003840Faulting process id: 0x23d4Faulting application start time: 0x01d766f33864d134Faulting application path: C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Paint Shop Pro 9.exeFaulting module path: igDGN13d.dllReport Id: 9a980a06-1cff-445f-a718-c220ff89c110Faulting package full name: Faulting package-relative application ID: Error: (06/15/2021 06:37:28 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Paint Shop Pro 9.exe, version: 9.0.0.0, time stamp: 0x41210e3bFaulting module name: igCGM13d.dll_unloaded, version: 13.3.1.0, time stamp: 0x40f549feException code: 0xc0000005Fault offset: 0x00008bc0Faulting process id: 0x23d8Faulting application start time: 0x01d762024b796030Faulting application path: C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Paint Shop Pro 9.exeFaulting module path: igCGM13d.dllReport Id: 10252418-1d2d-401d-8bb8-dd9c465e8b92Faulting package full name: Faulting package-relative application ID: Error: (06/15/2021 02:33:54 PM) (Source: Application Hang) (EventID: 1002) (User: )Description: The program wmplayer.exe version 12.0.19041.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel. Process ID: 1770 Start Time: 01d76139fb9400bc Termination Time: 2277 Application Path: C:\Program Files (x86)\Windows Media Player\wmplayer.exe Report Id: 0ab6f17b-4bb7-4a46-99ca-3d543e11451d Faulting package full name:Faulting package-relative application ID:Hang type: Cross-thread Error: (06/14/2021 10:36:32 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Paint Shop Pro 9.exe, version: 9.0.0.0, time stamp: 0x41210e3bFaulting module name: igDGN13d.dll_unloaded, version: 13.3.1.0, time stamp: 0x40f54a5aException code: 0xc0000005Fault offset: 0x00003840Faulting process id: 0x17a4Faulting application start time: 0x01d7618f02d45accFaulting application path: C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Paint Shop Pro 9.exeFaulting module path: igDGN13d.dllReport Id: 42f1486d-2810-4edc-b33c-4ce76af9a947Faulting package full name: Faulting package-relative application ID: Error: (06/14/2021 07:09:53 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Paint Shop Pro 9.exe, version: 9.0.0.0, time stamp: 0x41210e3bFaulting module name: igCGM13d.dll_unloaded, version: 13.3.1.0, time stamp: 0x40f549feException code: 0xc0000005Fault offset: 0x00008bc0Faulting process id: 0x336cFaulting application start time: 0x01d76136bef5c4b5Faulting application path: C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Paint Shop Pro 9.exeFaulting module path: igCGM13d.dllReport Id: be76c976-f5f1-416c-bcdc-afef430ed54bFaulting package full name: Faulting package-relative application ID: Error: (06/09/2021 07:13:44 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Paint Shop Pro 9.exe, version: 9.0.0.0, time stamp: 0x41210e3bFaulting module name: igDGN13d.dll_unloaded, version: 13.3.1.0, time stamp: 0x40f54a5aException code: 0xc0000005Fault offset: 0x00003840Faulting process id: 0x4d38Faulting application start time: 0x01d75d4bdda5ba7eFaulting application path: C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Paint Shop Pro 9.exeFaulting module path: igDGN13d.dllReport Id: d523f3c2-ffac-4445-ac0b-8d0d384f99d8Faulting package full name: Faulting package-relative application ID: Error: (06/08/2021 10:07:18 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbamtray.exe, version: 3.1.0.1838, time stamp: 0x5d13b12fFaulting module name: Qt5Core.dll, version: 5.11.1.0, time stamp: 0x5cba0161Exception code: 0xc0000005Fault offset: 0x0018dc19Faulting process id: 0x3318Faulting application start time: 0x01d75cd3b5824b41Faulting application path: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exeFaulting module path: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dllReport Id: afc20634-8e15-411e-9291-b6816a374c7aFaulting package full name: Faulting package-relative application ID: Error: (06/08/2021 04:36:45 PM) (Source: Application Hang) (EventID: 1002) (User: )Description: The program wmplayer.exe version 12.0.19041.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel. Process ID: 3ff8 Start Time: 01d75c17c06d9580 Termination Time: 827 Application Path: C:\Program Files (x86)\Windows Media Player\wmplayer.exe Report Id: b95933ab-5558-4eeb-a504-b39cbd1a0138 Faulting package full name:Faulting package-relative application ID:Hang type: Cross-threadSystem errors:=============Error: (06/22/2021 02:33:45 PM) (Source: Tcpip) (EventID: 4199) (User: )Description: The system detected an address conflict for IP address 192.168.0.4 with the systemhaving network hardware address 60-02-B4-4C-F7-9E. Network operations on this system maybe disrupted as a result. Error: (06/16/2021 02:18:29 AM) (Source: DCOM) (EventID: 10010) (User: DOONEYSEXBOT4)Description: The server microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca did not register with DCOM within the required timeout. Error: (05/26/2021 02:32:32 PM) (Source: Tcpip) (EventID: 4199) (User: )Description: The system detected an address conflict for IP address 192.168.0.3 with the systemhaving network hardware address 60-02-B4-4C-F7-9E. Network operations on this system maybe disrupted as a result. Error: (05/26/2021 11:20:57 AM) (Source: Tcpip) (EventID: 4199) (User: )Description: The system detected an address conflict for IP address 192.168.0.4 with the systemhaving network hardware address 60-02-B4-4C-F7-9E. Network operations on this system maybe disrupted as a result. Error: (05/25/2021 09:22:01 PM) (Source: Tcpip) (EventID: 4199) (User: )Description: The system detected an address conflict for IP address 192.168.0.5 with the systemhaving network hardware address 0C-72-D9-25-83-3A. Network operations on this system maybe disrupted as a result. Error: (05/24/2021 12:20:44 AM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)Description: A fatal error occurred while creating a TLS client credential. The internal error state is 10013. Error: (05/17/2021 01:40:33 PM) (Source: Tcpip) (EventID: 4199) (User: )Description: The system detected an address conflict for IP address 192.168.0.6 with the systemhaving network hardware address F0-76-1C-44-16-CE. Network operations on this system maybe disrupted as a result. Error: (05/16/2021 05:59:41 PM) (Source: Tcpip) (EventID: 4199) (User: )Description: The system detected an address conflict for IP address 192.168.0.7 with the systemhaving network hardware address 0C-72-D9-25-83-3A. Network operations on this system maybe disrupted as a result.Windows Defender:================Date: 2021-04-01 13:37:58Description: Microsoft Defender Antivirus scan has been stopped before completion.Scan Type: AntimalwareScan Parameters: Quick Scan Date: 2021-03-30 12:43:15Description: Microsoft Defender Antivirus scan has been stopped before completion.Scan Type: AntimalwareScan Parameters: Quick Scan Date: 2021-03-29 13:29:06Description: Microsoft Defender Antivirus scan has been stopped before completion.Scan Type: AntimalwareScan Parameters: Quick Scan Date: 2021-03-28 13:50:24Description: Microsoft Defender Antivirus scan has been stopped before completion.Scan Type: AntimalwareScan Parameters: Quick Scan Date: 2021-03-27 15:34:41Description: Microsoft Defender Antivirus scan has been stopped before completion.Scan Type: AntimalwareScan Parameters: Quick Scan Date: 2021-03-15 12:31:38Description: Microsoft Defender Antivirus has encountered an error trying to update security intelligence.New security intelligence Version: Previous security intelligence Version: 1.297.482.0Update Source: Microsoft Malware Protection CenterSecurity intelligence Type: AntiVirusUpdate Type: FullCurrent Engine Version: Previous Engine Version: 1.1.16100.4Error code: 0x80072ee7Error description: The server name or address could not be resolvedDate: 2021-03-15 12:31:38Description: Microsoft Defender Antivirus has encountered an error trying to update security intelligence.New security intelligence Version: Previous security intelligence Version: 1.297.482.0Update Source: Microsoft Malware Protection CenterSecurity intelligence Type: AntiSpywareUpdate Type: FullCurrent Engine Version: Previous Engine Version: 1.1.16100.4Error code: 0x80072ee7Error description: The server name or address could not be resolvedDate: 2021-03-15 12:31:38Description: Microsoft Defender Antivirus has encountered an error trying to update security intelligence.New security intelligence Version: Previous security intelligence Version: 1.297.482.0Update Source: Microsoft Malware Protection CenterSecurity intelligence Type: AntiVirusUpdate Type: FullCurrent Engine Version: Previous Engine Version: 1.1.16100.4Error code: 0x80072ee7Error description: The server name or address could not be resolvedDate: 2021-03-15 12:31:38Description: Microsoft Defender Antivirus has encountered an error trying to update security intelligence.New security intelligence Version: Previous security intelligence Version: 1.297.482.0Update Source: Microsoft Malware Protection CenterSecurity intelligence Type: AntiVirusUpdate Type: FullCurrent Engine Version: Previous Engine Version: 1.1.16100.4Error code: 0x80072ee7Error description: The server name or address could not be resolvedDate: 2021-03-15 12:31:38Description: Microsoft Defender Antivirus has encountered an error trying to update security intelligence.New security intelligence Version: Previous security intelligence Version: 1.297.482.0Update Source: Microsoft Malware Protection CenterSecurity intelligence Type: AntiSpywareUpdate Type: FullCurrent Engine Version: Previous Engine Version: 1.1.16100.4Error code: 0x80072ee7Error description: The server name or address could not be resolvedCodeIntegrity:===============Date: 2021-06-22 10:25:22Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.==================== Memory info ===========================BIOS: Insyde F.16 04/24/2014Motherboard: Hewlett-Packard 2213Processor: Intel® Pentium® CPU N3520 @ 2.16GHzPercentage of memory in use: 87%Total physical RAM: 3984.27 MBAvailable physical RAM: 496.04 MBTotal Virtual: 15248.27 MBAvailable Virtual: 6153.71 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:464.52 GB) (Free:92.35 GB) NTFS \\?\Volume{b69b7177-4a5f-43fd-a8a8-0e08ac04c748}\ (Recovery) (Fixed) (Total:0.52 GB) (Free:0.5 GB) NTFS\\?\Volume{0475fded-8473-41de-81e7-5c7d7235c8a7}\ () (Fixed) (Total:0.61 GB) (Free:0.08 GB) NTFS\\?\Volume{6dde30d3-1f58-4b17-935c-b85f4377e8dd}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partition Table ==================== ==========================================================Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt ======================= ETA: while I was doing some cursory scans, I noticed that a driver had been installed on the computer. I'm not overly concerned because I noticed that another driver with random letters and numbers was also put on the computer back in August of last year- perhaps a result of running antiroot and/or AV info?Here's the info, either way:Log Name:SystemSource:Service Control ManagerDate:6/22/2021 6:53:25 PMEvent ID:7045Task Category: NoneLevel: InformationKeywords:ClassicUser:DOONEYSEXBOT4\OwnerComputer:DooneySexbot4Description:A service was installed in the system. Service Name:47642F41Service File Name:C:\WINDOWS\system32\drivers\47642F41.sysService Type:kernel mode driverService Start Type:demand startService Account:Event Xml:704504000x808000000000000025371SystemDooneySexbot447642F41C:\WINDOWS\system32\drivers\47642F41.syskernel mode driverdemand start ETA: it appears to be related to system hardware drivers?Fascinating. ETA2: Oop, nope, forget that - it was signed by Malwarebytes, so definitely from them!

Edited by MML, 22 June 2021 - 07:44 PM.