WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. Join 93100 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Unexpected Chrome Shutdown & Black Screens

Started by rockaway1 , Apr 13 2022 04:18 PM

Chrome shutdown Black screen

This topic is locked

11 replies to this topic

#1 rockaway1

Authentic Member

Authentic Member
35 posts

Posted 13 April 2022 - 04:18 PM

I've experienced unexpected instability while running chrome. In some instances chrome shuts down and other times the screen goes black.

Here are 2 logs from Farbar

Log 1

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-04-2022 01

Ran by AA583803 (administrator) on AA585803-L (Dell Inc. Latitude 7390 2-in-1) (13-04-2022 18:09:20)

Running from C:\Users\AA583803\OneDrive - MassMutual\Desktop

Loaded Profiles: AA583803

Platform: Microsoft Windows 10 Pro Version 21H2 19044.1586 (X64) Language: English (United States)

Default browser: Chrome

Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ALPS ALPINE CO., LTD. -> ALPSALPINE CO., LTD.) C:\Windows\System32\DellTPad\ApntEx.exe

(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudIE.exe

(C:\Program Files (x86)\Airwatch\AgentUI\TaskScheduler.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Airwatch\AgentUI\AWACMClient.exe

(C:\Program Files (x86)\Airwatch\AgentUI\TaskScheduler.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Airwatch\AgentUI\AwWindowsIpc.exe

(C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ->) (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\145.4.4921\QtWebEngineProcess.exe <2>

(C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe

(C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

(C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe <17>

(C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\x86\Acrobat\Acrobat.exe <2>

(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>

(C:\Program Files\CrowdStrike\CSFalconService.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> CrowdStrike, Inc.) C:\Program Files\CrowdStrike\CSFalconContainer.exe <2>

(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe

(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe

(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>

(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe

(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe

(DellTPad\Apoint.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE CO., LTD.) C:\Windows\System32\DellTPad\ApMsgFwd.exe

(DellTPad\Apoint.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Windows\System32\DellTPad\hidfind.exe

(DellTPad\Apoint.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ALPSALPINE Co., Ltd.) C:\Windows\System32\DellTPad\ApRemote.exe

(DellTPad\HidMonitorSvc.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ALPSALPINE Co., Ltd.) C:\Windows\System32\DellTPad\Apoint.exe

(DriverStore\FileRepository\igdlh64.inf_amd64_45855586d601d062\igfxCUIService.exe ->) (Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_45855586d601d062\igfxEM.exe

(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>

(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe <2>

(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe

(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe

(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe

(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe

(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe

(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\56.0.11.0\crashpad_handler.exe <3>

(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14>

(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\56.0.11.0\GoogleDriveFS.exe <7>

(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe

(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE

(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE

(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE

(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(explorer.exe ->) (U3 LLC -> ) C:\ProgramData\U3\U3Launcher\LaunchU3.exe

(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe

(explorer.exe ->) (Xerox Corporation) [File not signed] C:\Program Files\Xerox\Xerox Workplace Cloud Client\JobSubmission\JobSubmission.exe

(explorer.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\AA583803\AppData\Roaming\Zoom\bin\Zoom.exe <2>

(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\msoasb.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Users\AA583803\AppData\Local\Microsoft\Teams\current\Teams.exe <8>

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe

(SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe

(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

(services.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Windows\System32\DellTPad\HidMonitorSvc.exe

(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe

(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe

(services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe

(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe

(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe

(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe

(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe

(services.exe ->) (GeoComply USA, Inc. -> GeoComply) C:\Program Files (x86)\GeoComply\PlayerLocationCheck\Application\service.exe

(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe

(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe

(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

(services.exe ->) (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

(services.exe ->) (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(services.exe ->) (Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_45855586d601d062\igfxCUIService.exe

(services.exe ->) (Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_45855586d601d062\IntelCpHDCPSvc.exe

(services.exe ->) (Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_45855586d601d062\IntelCpHeciSvc.exe

(services.exe ->) (Intel® Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe

(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe

(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> CrowdStrike, Inc.) C:\Program Files\CrowdStrike\CSFalconService.exe

(services.exe ->) (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe

(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Airwatch\AgentUI\TaskScheduler.exe

(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Airwatch\HealthMonitoring\Service\VMwareHubHealthMonitoring.exe

(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_30083e9f0e289fee\WTabletServiceISD.exe <2>

(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe

(services.exe ->) (Xerox Corporation) [File not signed] C:\Program Files\Xerox\Xerox Workplace Cloud Client\Xerox.Cloud.VirtualPrint.ClientService\Xerox.Cloud.VirtualPrint.ClientService.exe

(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe

(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\secd.exe

(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\AA583803\AppData\Local\Microsoft\OneDrive\22.055.0313.0001\FileCoAuth.exe

(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>

(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235936 2020-08-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618096 2020-08-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2176648 2018-12-14] (Logitech Inc -> Logitech, Inc.)

HKLM\...\Run: [XMPCJobMonitor] => C:\Program Files\Xerox\Xerox Workplace Cloud Client\JobSubmission\JobSubmission.exe [195584 2019-11-12] (Xerox Corporation) [File not signed]

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)

HKLM\...\Run: [WavesSvc] => c:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1229080 2020-03-31] (Waves Inc -> Waves Audio Ltd.)

HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [438888 2014-01-15] (Canon Inc. -> CANON INC.)

HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [10585376 2022-03-27] (Dropbox, Inc -> Dropbox, Inc.)

HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [278440 2019-12-05] (Canon Inc. -> CANON INC.)

HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.11.0\GoogleDriveFS.exe [53664656 2022-03-30] (Google LLC -> Google, Inc.)

HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.11.0\GoogleDriveFS.exe [53664656 2022-03-30] (Google LLC -> Google, Inc.)

HKU\S-1-5-21-1146508179-405363288-658039003-1003\...\Run: [com.squirrel.Teams.Teams] => C:\Users\AA583803\AppData\Local\Microsoft\Teams\Update.exe [2490040 2022-03-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)

HKU\S-1-5-21-1146508179-405363288-658039003-1003\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.11.0\GoogleDriveFS.exe [53664656 2022-03-30] (Google LLC -> Google, Inc.)

HKU\S-1-5-21-1146508179-405363288-658039003-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [39936 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

HKU\S-1-5-18\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [324976 2010-05-21] (Flexera Software, Inc. -> Flexera Software, Inc.)

HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.11.0\GoogleDriveFS.exe [53664656 2022-03-30] (Google LLC -> Google, Inc.)

HKLM\...\Windows x64\Print Processors\Canon TR8600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDGU.DLL [525824 2021-09-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)

HKLM\...\Windows x64\Print Processors\hpcpp215: C:\Windows\System32\spool\prtprocs\x64\hpcpp215.dll [770232 2018-03-04] (HP Inc. -> HP Inc.)

HKLM\...\Windows x64\Print Processors\XeroxV5Print: C:\Windows\System32\spool\prtprocs\x64\x5print.dll [95232 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Xerox Corporation)

HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor TR8600 series: C:\WINDOWS\system32\CNCALGU.DLL [258048 2020-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)

HKLM\...\Print\Monitors\Canon BJ Language Monitor MG6600 series: CNMLMC9.DLL

HKLM\...\Print\Monitors\Canon BJ Language Monitor TR8600 series: C:\WINDOWS\system32\CNMLMGU.DLL [1355264 2021-09-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)

HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [375296 2014-03-17] (CANON INC.) [File not signed]

HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\WINDOWS\system32\HPMPW082.DLL [128184 2018-03-04] (HP Inc. -> HP Inc.)

HKLM\...\Print\Monitors\HPMLM190: C:\WINDOWS\system32\hpmlm190.dll [310968 2018-03-04] (HP Inc. -> HP Inc.)

HKLM\...\Print\Monitors\Xerox Cloud Port Monitor: C:\WINDOWS\system32\XMPCPortMon.dll [349184 2018-04-18] (Xerox Corporation) [File not signed]

HKLM\...\Print\Monitors\Xerox Virtualization Port: C:\WINDOWS\system32\x5lrsl.dll [135168 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Xerox Corporation)

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\100.0.4896.75\Installer\chrmstp.exe [2022-04-06] (Google LLC -> Google LLC)

Startup: C:\Users\AA583803\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LaunchU3.exe.lnk [2019-02-11]

ShortcutTarget: LaunchU3.exe.lnk -> C:\Users\AA583803\AppData\Roaming\Microsoft\Installer\{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}\_294823.exe () [File not signed]

Startup: C:\Users\AA583803\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RingCentral.lnk [2021-09-14]

ShortcutTarget: RingCentral.lnk -> C:\Users\AA583803\AppData\Local\Programs\RingCentral\RingCentral.exe (No File)

GroupPolicy: Restriction ? <==== ATTENTION

Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0467277A-332B-4A71-8C89-79A851937A08} - System32\Tasks\Symantec Endpoint Protection\Symantec Endpoint Protection Error Analyzer => C:\Program Files\Symantec\14.0.3752.1000.105\Bin\SymErr.exe /analyze (No File)

Task: {047C7BF7-AB0B-4D37-8547-506A575A121B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-01-08] (Google Inc -> Google Inc.)

Task: {05AD6016-3472-4E40-8589-69C3570095C9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)

Task: {069FCE3D-C175-4042-A733-78E36B819635} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on switch user if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226008 2018-12-25] (Intel® Client Connectivity Division SW -> Intel Corporation)

Task: {0BC0BA1F-6AC2-4536-A85B-1C2268DE5290} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115632 2022-04-12] (Microsoft Corporation -> Microsoft Corporation)

Task: {10721086-7850-46D7-A2DC-12E78C41483B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {12508CED-FA9C-4D50-A94B-E12C3EFB9E57} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226008 2018-12-25] (Intel® Client Connectivity Division SW -> Intel Corporation)

Task: {1D8674D0-474A-47ED-B537-31A675053690} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {2137CF50-1EAF-4BAC-8340-3B0BAF21548B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [432128 2022-03-08] (Microsoft Windows -> Microsoft Corporation)

Task: {3A1CF712-6D22-4FE0-8D46-602DB456E46E} - \OneDrive Standalone Update Task-S-1-5-21-1146508179-405363288-658039003-1001 -> No File <==== ATTENTION

Task: {3F345019-E5A1-46B2-8F24-DB73B7BE34A9} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {4C52EDAE-B5AF-4D5C-8B6D-001A95F35383} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService

Task: {4EBADE0C-CD84-449F-B631-3770A8C22F40} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {4EF4B17D-010E-4EBE-8602-18A72085EAAE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [5439888 2022-01-20] (Microsoft Corporation -> Microsoft Corporation)

Task: {51FEA407-1BE9-4928-81A5-287B65F63451} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {5516DEF5-18A9-45F7-9E52-F85E5FA333A9} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [432128 2022-03-08] (Microsoft Windows -> Microsoft Corporation)

Task: {5FDD8265-4F24-4869-B704-C17EB3720F10} - System32\Tasks\GeoComply Update Task => C:\Program Files (x86)\GeoComply\\PlayerLocationCheck\Update\GeoComplyUpdate.exe [3191272 2022-01-10] (GeoComply USA, Inc. -> GeoComply) -> /config=C:\Program Files (x86)\GeoComply\\PlayerLocationCheck\Update\GeoComplyUpdate.xml

Task: {66B71282-8905-4249-92DE-7FAEA5524D44} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [5439888 2022-01-20] (Microsoft Corporation -> Microsoft Corporation)

Task: {67A95341-70AC-4A00-BC39-5EB37DC18C42} - System32\Tasks\VMware\SfdAgent\Check Required Apps => C:\Program Files\VMware\SfdAgent\VMware.Hub.SfdAgent.DeployCmd.exe [30608 2021-08-20] (VMware, Inc. -> VMware EUC)

Task: {727D92C4-0CA5-4348-84B0-EA817BADA23C} - System32\Tasks\G2MUpdateTask-S-1-5-21-1146508179-405363288-658039003-1003 => C:\Users\AA583803\AppData\Local\GoToMeeting\19932\g2mupdate.exe [31176 2021-11-11] (LogMeIn, Inc. -> LogMeIn, Inc.)

Task: {81D3FADB-33BF-4658-A73C-F867C78EFE96} - System32\Tasks\Symantec Endpoint Protection\Symantec Endpoint Protection Error Processor => C:\Program Files\Symantec\14.0.3752.1000.105\Bin\SymErr.exe /submit (No File)

Task: {89C52B1D-7C79-413A-98EC-4C486F6EB81D} - System32\Tasks\VMwareHubHealthMonitoringJob => C:\Program Files (x86)\Airwatch\HealthMonitoring\Maintenance\VMwareHubHealthMonitoring.exe [15568 2022-03-17] (VMware, Inc. -> VMware, Inc.)

Task: {97FE8533-1FFE-4892-A97A-A8D974105433} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {99482EF8-F4AB-4A4E-A286-DC8A726FABB1} - System32\Tasks\LastPassUpdater => C:\Program Files (x86)\LastPass\Updater\Updater.exe [1319288 2022-02-14] (LogMeIn, Inc. -> LogMeIn Inc.)

Task: {A6EE8131-D7F3-4130-B755-F2D8459DBF6A} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {A92012C5-75C4-44E4-A49C-1D47FE040D31} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864400 2022-04-04] (Microsoft Corporation -> Microsoft Corporation)

Task: {B1A4FF7F-2F01-4E26-8E65-99AA3859DA8E} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-11-15] (Dell Inc -> Dell Inc.)

Task: {B43156A6-74DD-469A-B9F9-732E1B8939C1} - System32\Tasks\VMware\SfdAgent\Install Validation Task => C:\Program Files\VMware\SfdAgent\VMware.Hub.SfdAgent.DeployCmd.exe [30608 2021-08-20] (VMware, Inc. -> VMware EUC)

Task: {BB7422E5-15E9-432E-AA68-406E6C3D1EEE} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4102784 2022-02-06] (Microsoft Corporation -> Microsoft Corporation)

Task: {C1C51FF5-FF55-4566-A0EC-2D091017740E} - System32\Tasks\ApowerREC => C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe /autoStart (No File)

Task: {C5F8B471-9FDC-4E55-B966-6B6691E5A6C9} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)

Task: {C85B7E30-F968-441A-9317-CACE4A6EEE4C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {CA3A1867-0675-452A-8C7A-DAC7FB0C6CBE} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {CD356E30-F06F-4078-B746-DEE1516EF923} - System32\Tasks\G2MUploadTask-S-1-5-21-1146508179-405363288-658039003-1003 => C:\Users\AA583803\AppData\Local\GoToMeeting\19932\g2mupload.exe [31176 2021-11-11] (LogMeIn, Inc. -> LogMeIn, Inc.)

Task: {CE895677-286B-4511-A3C0-51EAB2691BF6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-01-08] (Google Inc -> Google Inc.)

Task: {CF377CCA-4259-4304-B839-F09C94A06BBB} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1158576 2022-04-12] (Microsoft Corporation -> Microsoft Corporation)

Task: {D055B4B6-FC78-4474-A589-D1EA5CC0B67A} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226008 2018-12-25] (Intel® Client Connectivity Division SW -> Intel Corporation)

Task: {D6909D20-0CD9-43AA-88D8-7B3C218A2755} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {D81D3ACE-DB1D-43BD-A45E-36C564BE8791} - System32\Tasks\Symantec Endpoint Protection\Symantec Endpoint Protection Autofix => C:\Program Files\Symantec\14.0.3752.1000.105\Bin\SymErr.exe /ui (No File)

Task: {D8602836-D7AC-4E00-912A-C92CE18E1D62} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\Wsc Startup event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {E24B7596-7FF3-42EA-BE35-F0FDF8903B06} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2FCDED1F-9CF4-452B-AD3C-CEAE571798E2\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-11] (Microsoft Windows -> Microsoft Corporation)

Task: {EB72CF1A-6DAC-4E26-9993-7406966499B3} - System32\Tasks\VMware\SfdAgent\Software Distribution Queue Task => C:\Program Files\VMware\SfdAgent\VMware.Hub.SfdAgent.DeployCmd.exe [30608 2021-08-20] (VMware, Inc. -> VMware EUC)

Task: {EF49295D-3116-4D15-A093-1012862D40E5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864400 2022-04-04] (Microsoft Corporation -> Microsoft Corporation)

Task: {F5A18EDF-B5B1-48B8-B46E-797CE32A2D2C} - System32\Tasks\GeoComply Service Check => "C:\Program Files (x86)\GeoComply\\PlayerLocationCheck\Application\PlayerLocationCheckTask.cmd" (No File)

Task: {F5F3A743-915F-40E0-B360-C85F1B54137D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115632 2022-04-12] (Microsoft Corporation -> Microsoft Corporation)

Task: {FC3BA724-6E91-4146-83E1-96E1052EEF9C} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\tbtsvc.exe [2302168 2018-12-25] (Intel® Client Connectivity Division SW -> Intel Corporation)

Task: {FECAF8C5-FDC6-4FD2-B1AD-DB661C45C115} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-1146508179-405363288-658039003-1003.job => C:\Users\AA583803\AppData\Local\GoToMeeting\19932\g2mupdate.exe

Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-1146508179-405363288-658039003-1003.job => C:\Users\AA583803\AppData\Local\GoToMeeting\19932\g2mupload.exe

Task: C:\WINDOWS\Tasks\VMwareHubHealthMonitoringJob.job => C:\Program Files (x86)\Airwatch\HealthMonitoring\Maintenance\VMwareHubHealthMonitoring.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 170.6.240.26 170.6.241.166

Tcpip\..\Interfaces\{84e76070-f2bf-49f1-bbb2-4bfd1a7d3ce4}: [DhcpNameServer] 170.6.240.26 170.6.241.166

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:

=======

Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]

Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]

Edge Extension: (No Name) -> hdokiejnpimakedhajhdlcegeplioahd_LastPassLastPassFreePasswordManager_qq0fmhteeht3j => C:\Program Files\WindowsApps\LastPass.LastPassFreePasswordManager_4.48.0.0_neutral__qq0fmhteeht3j [not found]

Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]

Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

Edge DefaultProfile: Default

Edge Profile: C:\Users\AA583803\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-06]

Edge HomePage: Default -> hxxps://massmutual.okta.com/

Edge Extension: (LastPass: Free Password Manager) - C:\Users\AA583803\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2022-03-28]

FireFox:

========

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-03-02] (Adobe Inc. -> Adobe Systems Inc.)

FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [File not signed]

FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-01-20] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-01-20] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin HKU\S-1-5-21-1146508179-405363288-658039003-1003: SkypeForBusinessPlugin-16.2 -> C:\Users\AA583803\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.282\npGatewayNpapi.dll [2018-10-19] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin HKU\S-1-5-21-1146508179-405363288-658039003-1003: SkypeForBusinessPlugin64-16.2 -> C:\Users\AA583803\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.282\npGatewayNpapi-x64.dll [2018-10-19] (Microsoft Corporation -> Microsoft Corporation)

Chrome:

=======

CHR DefaultProfile: Default

CHR Profile: C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default [2022-04-13]

CHR Notifications: Default -> hxxps://app.gotowebinar.com; hxxps://chatsupport.apple.com; hxxps://ocsnext.ebay.com; hxxps://www.jetblue.com; hxxps://www.verizon.com

CHR StartupUrls: Default -> "hxxps://massmutual.okta.com/"

CHR Extension: (Slides) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-08]

CHR Extension: (Docs) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-08]

CHR Extension: (Google Drive) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-27]

CHR Extension: (YouTube) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-08]

CHR Extension: (Honey) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2022-04-13]

CHR Extension: (Screencast-O-Matic Launcher) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\eefedolmcildfckjamddopaplfiiankl [2019-05-28]

CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-04-12]

CHR Extension: (Sheets) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-08]

CHR Extension: (Google Docs Offline) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-12]

CHR Extension: (LastPass: Free Password Manager) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2022-04-12]

CHR Extension: (App Launcher for Google Maps) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmiegoigendlbmjjllhjmkjenjechmhg [2019-01-09]

CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-02-06]

CHR Extension: (Chrome Web Store Payments) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-06]

CHR Extension: (Print Friendly & PDF) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohlencieiipommannpdfcmfdpjjmeolj [2021-04-11]

CHR Extension: (Gmail) - C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-27]

CHR Profile: C:\Users\AA583803\AppData\Local\Google\Chrome\User Data\System Profile [2019-08-24]

CHR HKU\S-1-5-21-1146508179-405363288-658039003-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)

R2 AirwatchService; C:\Program Files (x86)\Airwatch\AgentUI\TaskScheduler.exe [22224 2022-03-17] (VMware, Inc. -> VMware, Inc.)

R2 ApHidMonitorService; C:\WINDOWS\system32\DellTPad\HidMonitorSvc.exe [894880 2021-05-24] (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9192328 2022-02-06] (Microsoft Corporation -> Microsoft Corporation)

R2 CsFalconService; C:\Program Files\CrowdStrike\CSFalconService.exe [2939160 2022-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CrowdStrike, Inc.)

S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)

S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-10] (Dropbox, Inc -> Dropbox, Inc.)

R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-03-27] (Dropbox, Inc -> Dropbox, Inc.)

R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [436256 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)

R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3847712 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)

R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [462880 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)

R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1024680 2021-09-02] (PC-Doctor, Inc. -> PC-Doctor, Inc.)

R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-11-12] (Dell Inc -> )

S2 ETActiveSteeringHelper; C:\WINDOWS\Ethertronics\ETservice.exe [389616 2017-11-26] (Microsoft Windows Hardware Compatibility Publisher -> )

S3 GoToAssist; C:\Program Files (x86)\LogMeIn\GoToAssist Corporate\1280\G2AC_Service.exe [316872 2019-06-27] (LogMeIn, Inc. -> LogMeIn, Inc.)

R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> )

R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2016-06-15] (HP Inc.) [File not signed]

S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-19] (Microsoft Windows -> Microsoft Corporation)

R2 Player Location Check; C:\Program Files (x86)\GeoComply\//PlayerLocationCheck///Application/service.exe [3141608 2022-01-10] (GeoComply USA, Inc. -> GeoComply)

R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2016-06-15] (HP Inc.) [File not signed]

S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6228008 2022-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-11-15] (Dell Inc -> Dell Inc.)

R2 VMware Hub Health Monitoring Service; C:\Program Files (x86)\Airwatch\HealthMonitoring\Service\VMwareHubHealthMonitoring.exe [15568 2022-03-17] (VMware, Inc. -> VMware, Inc.)

S2 VMWOSQEXT; C:\Program Files (x86)\Airwatch\AgentUI\Telemetry\vmwosqext.exe [24367560 2022-03-17] (VMware, Inc. -> VMware, Inc.)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 XMPC VirtualPrint Client Service; C:\Program Files\Xerox\Xerox Workplace Cloud Client\Xerox.Cloud.VirtualPrint.ClientService\Xerox.Cloud.VirtualPrint.ClientService.exe [10752 2019-11-12] (Xerox Corporation) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ApHidfiltrService; C:\WINDOWS\System32\drivers\ApHidfiltrSW.sys [362512 2021-05-24] (WDKTestCert CHT1HTSH3180,132475688214743128 -> ALPSALPINE Co., Ltd.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)

S3 bcmnfcusb; C:\WINDOWS\System32\drivers\bcmnfcusb.sys [45656 2018-06-02] (Broadcom Corporation -> Broadcom Corporation.)

R1 CSAgent; C:\WINDOWS\system32\drivers\CrowdStrike\csagent.sys [2810072 2022-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CrowdStrike, Inc.)

S0 CSBoot; C:\WINDOWS\System32\drivers\CrowdStrike\CSBoot.sys [24208 2022-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> CrowdStrike, Inc.)

R3 CSDeviceControl; C:\WINDOWS\System32\drivers\CSDeviceControl.sys [224448 2022-01-22] (Microsoft Windows Hardware Compatibility Publisher -> CrowdStrike, Inc.)

R0 CSFirmwareAnalysis; C:\WINDOWS\System32\DRIVERS\CSFirmwareAnalysis.sys [93248 2021-10-21] (Microsoft Windows Hardware Compatibility Publisher -> CrowdStrike, Inc.)

R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)

S3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [22848 2017-10-13] (WDKTestCert Andy_Chen6,131219483243550933 -> OSR Open Systems Resources, Inc.)

S3 ETActiveSteering; C:\WINDOWS\System32\drivers\ETActiveSteering.sys [38680 2017-11-26] (WDKTestCert norikd,131383411497448652 -> Ethertronics I2C driver for ASA)

R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)

R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)

S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)

S3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-03-21] (Snap Inc. -> Windows ® Win 7 DDK provider)

S3 swmbbser05; C:\WINDOWS\System32\drivers\swmbbser05.sys [287816 2018-01-31] (Sierra Wireless, Inc -> Sierra Wireless Incorporated)

S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

S4 DBUtilDrv2; \SystemRoot\System32\drivers\DBUtilDrv2.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-04-13 18:08 - 2022-04-13 18:09 - 000000000 ____D C:\FRST

2022-04-13 17:57 - 2022-04-13 17:57 - 000003320 _____ C:\WINDOWS\system32\Tasks\GeoComply Service Check

2022-04-13 14:26 - 2022-04-13 14:27 - 000033623 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (14).pdf

2022-04-13 14:25 - 2022-04-13 14:25 - 000055733 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (13).pdf

2022-04-13 14:24 - 2022-04-13 14:24 - 000012509 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (12).pdf

2022-04-13 14:23 - 2022-04-13 14:30 - 000000000 ____D C:\Users\AA583803\Downloads\murphy tax docs

2022-04-13 14:23 - 2022-04-13 14:23 - 000025347 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (11).pdf

2022-04-13 14:04 - 2022-04-13 14:04 - 000000000 ___HD C:\$WinREAgent

2022-04-13 12:16 - 2022-04-13 12:16 - 000082511 _____ C:\Users\AA583803\Downloads\MML0018_YTD_NONDISCRIMATIONTESTING.pdf

2022-04-12 19:04 - 2022-04-12 19:04 - 000320363 _____ C:\Users\AA583803\Downloads\return history.pdf

2022-04-12 18:54 - 2022-04-12 18:54 - 000176948 _____ C:\Users\AA583803\Downloads\Anand B Lincoln account summary.pdf

2022-04-12 16:29 - 2022-04-12 16:29 - 000227511 _____ C:\Users\AA583803\Downloads\VA-LVBSH-RST001_FINAL.pdf

2022-04-12 16:26 - 2022-04-12 16:27 - 000300864 _____ C:\Users\AA583803\Downloads\QA_InterimValue_Nov2021.pdf

2022-04-12 15:59 - 2022-04-12 15:59 - 000000289 _____ C:\Users\AA583803\Google Drive.lnk

2022-04-12 15:27 - 2022-04-12 15:27 - 001362758 _____ C:\Users\AA583803\Downloads\LevelAdv_RefGuide_Feb2022.pdf

2022-04-12 15:00 - 2022-04-12 15:00 - 000983993 _____ C:\Users\AA583803\Downloads\162699_03f8a4f6-cdbb-4dca-b530-586cf51e43b8.pdf

2022-04-12 14:51 - 2022-04-12 14:51 - 001591847 _____ C:\Users\AA583803\Downloads\SCS PLUS 21 Cap Rate Flyer Series B - PreAnnounced (3).pdf

2022-04-12 13:55 - 2022-04-12 13:55 - 000026320 _____ C:\Users\AA583803\Downloads\Invoice INV-23240 (1).pdf

2022-04-12 13:42 - 2022-04-12 13:42 - 000542370 _____ C:\Users\AA583803\Downloads\report_1243.pdf

2022-04-12 12:28 - 2022-04-12 12:28 - 001176797 _____ C:\Users\AA583803\Downloads\Planning_Agreement_from_Joel_Bernstein____Mp.pdf

2022-04-12 11:42 - 2022-04-12 11:42 - 000054211 _____ C:\Users\AA583803\Downloads\780x-A585803-O256-dt20220411.xlsx

2022-04-12 11:28 - 2022-04-12 11:28 - 001493131 _____ C:\Users\AA583803\Downloads\sheeh_220408_ON_Partial_Withdrawal (1).pdf

2022-04-12 11:27 - 2022-04-12 11:27 - 000108535 _____ C:\Users\AA583803\Downloads\sheehan fax cover sheet.xlsx

2022-04-12 11:27 - 2022-04-12 11:27 - 000099216 _____ C:\Users\AA583803\Downloads\sheehan fax cover sheet.pdf

2022-04-12 11:21 - 2022-04-12 11:21 - 001410279 _____ C:\Users\AA583803\Downloads\sheeh_220408_ON_Partial_Withdrawal.pdf

2022-04-12 11:17 - 2022-04-12 11:17 - 000907547 _____ C:\Users\AA583803\Downloads\sheeh 220408 ON Partial Withdrawal.pdf

2022-04-12 11:12 - 2022-04-12 11:12 - 001427349 _____ C:\Users\AA583803\Downloads\combinepdf (53).pdf

2022-04-12 11:12 - 2022-04-12 11:12 - 001421759 _____ C:\Users\AA583803\Downloads\combinepdf (54).pdf

2022-04-12 11:08 - 2022-04-12 11:08 - 000496756 _____ C:\Users\AA583803\Downloads\sheehan ohio national.pdf

2022-04-11 19:36 - 2022-04-11 19:36 - 000263606 _____ C:\Users\AA583803\Downloads\combinepdf (52).pdf

2022-04-11 19:35 - 2022-04-11 19:35 - 000052079 _____ C:\Users\AA583803\Downloads\ixa-053-m.pdf

2022-04-11 19:33 - 2022-04-11 19:33 - 000583207 _____ C:\Users\AA583803\Downloads\iva-009-protection.pdf

2022-04-11 19:31 - 2022-04-11 19:31 - 000834606 _____ C:\Users\AA583803\Downloads\iva-009-performance-3.pdf

2022-04-11 19:29 - 2022-04-11 19:29 - 000061703 _____ C:\Users\AA583803\Downloads\iva-009-performance-multi.pdf

2022-04-11 19:28 - 2022-04-11 19:28 - 000825560 _____ C:\Users\AA583803\Downloads\iva-009-performance-1.pdf

2022-04-11 19:25 - 2022-04-11 19:25 - 000805583 _____ C:\Users\AA583803\Downloads\iva-009-guard.pdf

2022-04-11 19:24 - 2022-04-11 19:24 - 000842073 _____ C:\Users\AA583803\Downloads\iva-009-precision.pdf

2022-04-11 19:22 - 2022-04-11 19:22 - 000204976 _____ C:\Users\AA583803\Downloads\Bundle.pdf

2022-04-11 19:13 - 2022-04-11 19:13 - 008962881 _____ C:\Users\AA583803\Downloads\ppt-302.pptx

2022-04-11 19:07 - 2022-04-11 19:07 - 000959830 _____ C:\Users\AA583803\Downloads\Archive (4).zip

2022-04-11 19:04 - 2022-04-11 19:04 - 001260775 _____ C:\Users\AA583803\Downloads\ixa-118.pdf

2022-04-11 19:02 - 2022-04-11 19:02 - 000045155 _____ C:\Users\AA583803\Downloads\ixa-178-6.pdf

2022-04-11 18:59 - 2022-04-11 18:59 - 000066267 _____ C:\Users\AA583803\Downloads\iva-026-3.pdf

2022-04-11 18:58 - 2022-04-11 18:58 - 000050297 _____ C:\Users\AA583803\Downloads\iva-026-6.pdf

2022-04-11 18:54 - 2022-04-11 18:54 - 000045993 _____ C:\Users\AA583803\Downloads\ixa-178-3.pdf

2022-04-11 18:23 - 2022-04-11 18:23 - 000559504 _____ C:\Users\AA583803\Downloads\iny-187 (1).pdf

2022-04-11 18:22 - 2022-04-11 18:22 - 000559504 _____ C:\Users\AA583803\Downloads\iny-187.pdf

2022-04-11 18:20 - 2022-04-11 18:20 - 000078076 _____ C:\Users\AA583803\Downloads\iva-009-lock.pdf

2022-04-11 18:16 - 2022-04-11 18:16 - 002293182 _____ C:\Users\AA583803\Downloads\ixa-013-perf.pdf

2022-04-11 18:16 - 2022-04-11 18:16 - 002289269 _____ C:\Users\AA583803\Downloads\Archive (3).zip

2022-04-11 18:15 - 2022-04-11 18:15 - 002289269 _____ C:\Users\AA583803\Downloads\Archive (2).zip

2022-04-11 18:13 - 2022-04-11 18:13 - 000101897 _____ C:\Users\AA583803\Downloads\Archive (1).zip

2022-04-11 18:09 - 2022-04-11 18:09 - 000121154 _____ C:\Users\AA583803\Downloads\ixa-014.pdf

2022-04-11 16:51 - 2022-04-11 16:51 - 000542597 _____ C:\Users\AA583803\Downloads\report_3584.pdf

2022-04-11 16:40 - 2022-04-11 16:40 - 001591847 _____ C:\Users\AA583803\Downloads\SCS PLUS 21 Cap Rate Flyer Series B - PreAnnounced (2).pdf

2022-04-11 16:37 - 2022-04-11 16:37 - 000140552 _____ C:\Users\AA583803\Downloads\ixa_012 (1).pdf

2022-04-11 16:02 - 2022-04-11 16:02 - 000601586 _____ C:\Users\AA583803\Downloads\flex-guard-comm-rates (3).pdf

2022-04-11 15:06 - 2022-04-11 15:06 - 000048675 _____ C:\Users\AA583803\Downloads\MML0018_AUTOMATED FUNDING REPORT.pdf

2022-04-11 11:15 - 2022-04-11 11:15 - 000026320 _____ C:\Users\AA583803\Downloads\Invoice INV-23240.pdf

2022-04-11 11:13 - 2022-04-11 11:13 - 001716147 _____ C:\Users\AA583803\Downloads\FBP503r3_41_ePay_for_Financial_Planning_Services_RS (3).pdf

2022-04-09 16:39 - 2022-04-09 16:39 - 001591847 _____ C:\Users\AA583803\Downloads\SCS PLUS 21 Cap Rate Flyer Series B - PreAnnounced (1).pdf

2022-04-09 09:54 - 2022-04-09 09:54 - 000008904 _____ C:\Users\AA583803\Downloads\360Export (9).xls

2022-04-09 09:47 - 2022-04-09 09:47 - 000005684 _____ C:\Users\AA583803\Downloads\360Export (8).xls

2022-04-09 09:37 - 2022-04-09 09:37 - 000012091 _____ C:\Users\AA583803\Downloads\360Export (7).xls.xlsx

2022-04-09 09:27 - 2022-04-09 09:27 - 000008231 _____ C:\Users\AA583803\Downloads\360Export (7).xls

2022-04-08 16:43 - 2022-04-08 16:43 - 000718689 _____ C:\Users\AA583803\Downloads\combinepdf (51).pdf

2022-04-08 15:26 - 2022-04-08 15:26 - 000032778 _____ C:\Users\AA583803\Downloads\jennings rack wait list receipt.pdf

2022-04-08 15:24 - 2022-04-08 15:24 - 000032488 _____ C:\Users\AA583803\Downloads\000702403 (3).pdf

2022-04-08 15:19 - 2022-04-08 15:19 - 000590252 _____ C:\Users\AA583803\Downloads\Please_Review_and_Sign_Application_Amendment.pdf

2022-04-08 14:02 - 2022-04-08 14:02 - 000032488 _____ C:\Users\AA583803\Downloads\000702403 (2).pdf

2022-04-08 13:59 - 2022-04-08 13:59 - 000264191 _____ C:\Users\AA583803\Downloads\AI01158316-Bill-361977459-04082022123635.pdf

2022-04-08 12:58 - 2022-04-08 12:58 - 000003304 _____ C:\Users\AA583803\Downloads\Mass Mutual _ Social Selling 101.ics

2022-04-08 09:48 - 2022-04-08 09:48 - 000017675 _____ C:\Users\AA583803\Downloads\wenke Performance_Attribution_Summary.pdf

2022-04-08 09:44 - 2022-04-08 09:44 - 000132368 _____ C:\Users\AA583803\Downloads\wenke OD portfolio.PDF

2022-04-07 17:16 - 2022-04-07 17:16 - 000361154 _____ C:\Users\AA583803\Downloads\AI01158316-Amendment-361965063.pdf

2022-04-07 17:16 - 2022-04-07 17:16 - 000252678 _____ C:\Users\AA583803\Downloads\Service Online 2020.pdf

2022-04-07 17:16 - 2022-04-07 17:16 - 000252678 _____ C:\Users\AA583803\Downloads\Service Online 2020 (1).pdf

2022-04-07 16:54 - 2022-04-07 16:54 - 000063232 _____ C:\Users\AA583803\Downloads\cobra.wageworks.com-Make a One-Time Premium Payment.pdf

2022-04-07 16:54 - 2022-04-07 16:54 - 000057943 _____ C:\Users\AA583803\Downloads\mybenefits.wageworks.com-Make a One-Time Premium Payment.pdf

2022-04-07 15:54 - 2022-04-07 15:54 - 000024512 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2 (9).xls

2022-04-07 15:53 - 2022-04-07 15:53 - 000032704 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2 (7).xls

2022-04-07 15:53 - 2022-04-07 15:53 - 000024512 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2 (8).xls

2022-04-07 15:13 - 2022-04-07 15:13 - 002431808 _____ C:\Users\AA583803\Downloads\403018124_Application_Packet.pdf

2022-04-07 15:13 - 2022-04-07 15:13 - 002431808 _____ C:\Users\AA583803\Downloads\403018124_Application_Packet (1).pdf

2022-04-07 15:10 - 2022-04-07 15:10 - 002266524 _____ C:\Users\AA583803\Downloads\403018125_Application_Packet (1).pdf

2022-04-07 15:08 - 2022-04-07 15:08 - 002266524 _____ C:\Users\AA583803\Downloads\403018125_Application_Packet.pdf

2022-04-07 14:15 - 2022-04-07 14:15 - 000024512 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2 (6).xls

2022-04-07 13:58 - 2022-04-07 13:58 - 000024512 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2 (5).xls

2022-04-07 00:17 - 2022-04-07 00:17 - 000051712 _____ C:\Users\AA583803\Downloads\anand Performance_by_Security_2 (1).xls

2022-04-07 00:17 - 2022-04-07 00:17 - 000026383 _____ C:\Users\AA583803\Downloads\anand Performance_by_Security_2 (1).xlsx

2022-04-07 00:13 - 2022-04-07 00:13 - 000024512 _____ C:\Users\AA583803\Downloads\Purchase_and_Sales (1).xls

2022-04-07 00:08 - 2022-04-07 00:08 - 000024512 _____ C:\Users\AA583803\Downloads\Purchase_and_Sales.xls

2022-04-06 23:39 - 2022-04-06 23:39 - 000024512 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2 (4).xls

2022-04-06 23:38 - 2022-04-06 23:38 - 000024512 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2 (3).xls

2022-04-06 22:47 - 2022-04-06 22:47 - 000024512 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2 (2).xls

2022-04-06 22:38 - 2022-04-06 22:38 - 000024512 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2 (1).xls

2022-04-06 22:19 - 2022-04-06 22:19 - 000024512 _____ C:\Users\AA583803\Downloads\Portfolio_Holdings.xls

2022-04-06 21:56 - 2022-04-06 21:57 - 000155559 _____ C:\Users\AA583803\Downloads\Anand OD portfolio report.PDF

2022-04-06 17:53 - 2022-04-06 17:53 - 002579000 _____ C:\Users\AA583803\Downloads\400072643_Application_Packet (2).pdf

2022-04-06 17:33 - 2022-04-06 17:33 - 002579000 _____ C:\Users\AA583803\Downloads\400072643_Application_Packet (1).pdf

2022-04-06 17:26 - 2022-04-06 17:26 - 002579000 _____ C:\Users\AA583803\Downloads\400072643_Application_Packet.pdf

2022-04-06 16:20 - 2022-04-06 16:20 - 002993577 _____ C:\Users\AA583803\Downloads\cavaliere mass di.pdf

2022-04-06 11:16 - 2022-04-06 11:16 - 001716147 _____ C:\Users\AA583803\Downloads\FBP503r3_41_ePay_for_Financial_Planning_Services_RS (2).pdf

2022-04-05 14:29 - 2022-04-05 14:29 - 000157799 _____ C:\Users\AA583803\Downloads\sheehan portfolio report.PDF

2022-04-05 13:47 - 2022-04-05 14:30 - 000515617 _____ C:\Users\AA583803\Downloads\sheehan 2022 RMD.pdf

2022-04-05 13:41 - 2022-04-05 13:41 - 000000165 ____H C:\Users\AA583803\Downloads\~$MML0018_CVRMissingInformation.xlsx

2022-04-05 13:30 - 2022-04-05 13:30 - 000036295 _____ C:\Users\AA583803\Downloads\Jocie Consolidated_Statement.pdf

2022-04-05 12:50 - 2022-04-05 12:50 - 000057804 _____ C:\Users\AA583803\Downloads\offerreport (1).pdf

2022-04-05 11:51 - 2022-04-05 11:51 - 000058084 _____ C:\Users\AA583803\Downloads\offerreport.pdf

2022-04-05 11:12 - 2022-04-05 11:13 - 000103185 _____ C:\Users\AA583803\Downloads\knox muni details.pdf

2022-04-04 21:24 - 2022-04-04 21:24 - 000024512 _____ C:\Users\AA583803\Downloads\Performance_by_Security_2.xls

2022-04-04 20:43 - 2022-04-04 20:43 - 002980699 _____ C:\Users\AA583803\Downloads\1095-C Form 2021.pdf

2022-04-04 20:42 - 2022-04-04 20:42 - 000294844 _____ C:\Users\AA583803\Downloads\Tax Information - Documents - Nelnet (1).pdf

2022-04-04 20:42 - 2022-04-04 20:42 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1146508179-405363288-658039003-1003

2022-04-04 20:42 - 2022-04-04 20:42 - 000002388 _____ C:\Users\AA583803\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2022-04-04 20:41 - 2022-04-04 20:41 - 001639655 _____ C:\Users\AA583803\Downloads\W-2_Form_2021_Bernstein_2022_03_31_10_46_36_-0700_W-2_ESS (2).pdf

2022-04-04 20:41 - 2022-04-04 20:41 - 000196346 _____ C:\Users\AA583803\Downloads\0430114784 - Jenna Bernstein - MDBS Inc - 1099-NEC - TY2021 (1).pdf

2022-04-04 19:04 - 2022-04-04 19:04 - 001639655 _____ C:\Users\AA583803\Downloads\W-2_Form_2021_Bernstein_2022_03_31_10_46_36_-0700_W-2_ESS (1).pdf

2022-04-04 19:04 - 2022-04-04 19:04 - 000294844 _____ C:\Users\AA583803\Downloads\Tax Information - Documents - Nelnet.pdf

2022-04-04 18:51 - 2022-04-04 18:52 - 000012287 _____ C:\Users\AA583803\Downloads\balasu Change_in_Market_Value_Register (1).pdf

2022-04-04 18:49 - 2022-04-04 18:49 - 001639655 _____ C:\Users\AA583803\Downloads\W-2_Form_2021_Bernstein_2022_03_31_10_46_36_-0700_W-2_ESS.pdf

2022-04-04 18:48 - 2022-04-04 18:48 - 000196346 _____ C:\Users\AA583803\Downloads\0430114784 - Jenna Bernstein - MDBS Inc - 1099-NEC - TY2021.pdf

2022-04-04 14:49 - 2022-04-04 14:49 - 001700820 _____ C:\Users\AA583803\Downloads\combinepdf (50).pdf

2022-04-04 14:46 - 2022-04-04 14:46 - 000123238 _____ C:\Users\AA583803\Downloads\Polino SP500 Low volatility performance.pdf

2022-04-04 14:42 - 2022-04-04 14:42 - 000687066 _____ C:\Users\AA583803\Downloads\whitney FPAS.pdf

2022-04-04 14:40 - 2022-04-04 14:40 - 001262511 _____ C:\Users\AA583803\Downloads\Planning_Agreement_from_Joel_Bernstein____M.zip

2022-04-03 21:12 - 2022-04-04 14:50 - 000267610 _____ C:\Users\AA583803\Downloads\pollino Transaction_Activity.pdf

2022-04-03 20:57 - 2022-04-03 20:57 - 000011806 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (10).pdf

2022-04-03 20:56 - 2022-04-03 20:56 - 000011980 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (9).pdf

2022-04-03 20:54 - 2022-04-03 20:54 - 000011735 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (7).pdf

2022-04-03 20:54 - 2022-04-03 20:54 - 000011727 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (8).pdf

2022-04-03 20:52 - 2022-04-03 20:52 - 000011966 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (6).pdf

2022-04-03 20:50 - 2022-04-03 20:50 - 000044937 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (5).pdf

2022-04-03 20:48 - 2022-04-03 20:48 - 000051118 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (4).pdf

2022-04-01 18:28 - 2022-04-01 18:28 - 001716147 _____ C:\Users\AA583803\Downloads\FBP503r3_41_ePay_for_Financial_Planning_Services_RS (1).pdf

2022-04-01 18:26 - 2022-04-01 18:26 - 000501273 _____ C:\Users\AA583803\Downloads\MyPDF (6).pdf

2022-04-01 18:24 - 2022-04-01 18:24 - 000167007 _____ C:\Users\AA583803\Downloads\MyPDF (5).pdf

2022-04-01 18:24 - 2022-04-01 18:24 - 000122036 _____ C:\Users\AA583803\Downloads\Form CRS.pdf

2022-04-01 18:12 - 2022-04-01 18:12 - 000503025 _____ C:\Users\AA583803\Downloads\A3MFBP100r2_21_Financial_Planning_Submission_and_Approval_Process_RS_V3 (2).pdf

2022-03-31 18:56 - 2022-03-31 18:57 - 000220160 _____ C:\Users\AA583803\Downloads\pollino low vol index performance.xls

2022-03-31 18:41 - 2022-03-31 18:41 - 004666543 _____ C:\Users\AA583803\Downloads\The Freedom Point eBook (1).pdf

2022-03-31 16:38 - 2022-03-31 16:38 - 001284805 _____ C:\Users\AA583803\Downloads\combinepdf (49).pdf

2022-03-31 15:25 - 2022-03-31 15:25 - 000234620 _____ C:\Users\AA583803\Downloads\EN-05-10026.pdf

2022-03-31 15:11 - 2022-03-31 15:11 - 004666543 _____ C:\Users\AA583803\Downloads\The Freedom Point eBook.pdf

2022-03-31 14:36 - 2022-04-13 14:03 - 000000000 ____D C:\Program Files\dotnet

2022-03-31 12:08 - 2022-03-31 12:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox

2022-03-31 11:53 - 2022-03-31 11:53 - 000002427 _____ C:\Users\AA583803\Downloads\MassMutual Academy_ Advanced Sales Forum.ics

2022-03-30 16:44 - 2022-03-30 16:44 - 000121760 _____ C:\Users\AA583803\Downloads\4751085107_PPP_Loan_Amount.pdf

2022-03-30 12:10 - 2022-03-30 12:10 - 000000940 _____ C:\Users\AA583803\Downloads\Introduction to Customized Portfolios.ics

2022-03-30 12:09 - 2022-03-30 12:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\VMware

2022-03-30 00:10 - 2022-03-30 00:10 - 000000000 ____D C:\WINDOWS\system32\%programdata%

2022-03-29 23:57 - 2022-03-29 23:57 - 000000000 ____D C:\WINDOWS\SysWOW64\%programdata%

2022-03-29 23:57 - 2022-03-29 23:57 - 000000000 ____D C:\Users\AA583803\AppData\Local\VMware

2022-03-29 18:12 - 2022-03-29 18:12 - 001089837 _____ C:\Users\AA583803\Downloads\MML0018_2021_AdvisorTrust_Custodial_Restatement.pdf

2022-03-29 17:47 - 2022-03-29 17:47 - 004273923 _____ C:\Users\AA583803\Downloads\MML0018_Executed_Final_Plan_Document_Package.pdf

2022-03-29 15:46 - 2022-03-29 15:46 - 000012458 _____ C:\Users\AA583803\Downloads\MML0018_CVRMissingInformation (1).xlsx

2022-03-29 15:41 - 2022-03-29 15:41 - 000387072 _____ C:\Users\AA583803\Downloads\RE_ Reminder_ WSD Digital_ LLC 401(k) Plan - 2021 Year-End Employer Contribution _ ref__00D306J2H__5005x1g7VOU_ref _.msg

2022-03-29 14:58 - 2022-03-29 14:58 - 002218318 _____ C:\Users\AA583803\Downloads\To Sell Is Human The Surprising Truth About Moving Others.pdf

2022-03-29 12:29 - 2022-03-29 12:29 - 000081401 _____ C:\Users\AA583803\Downloads\express-path-fluidless-underwriting-program-faqs_FINAL.docx.pdf

2022-03-28 16:41 - 2022-03-28 16:41 - 000163232 _____ C:\Users\AA583803\Downloads\Statement Dated 02_28_2022.pdf

2022-03-28 16:12 - 2022-03-28 16:12 - 000224455 _____ C:\Users\AA583803\Downloads\_V3_be_71_CLNT-be71b1d1-c643-4376-a93f-61ab024a3a68.pdf

2022-03-28 16:11 - 2022-03-28 16:11 - 000223045 _____ C:\Users\AA583803\Downloads\_V3_7f_72_CLNT-7f72c931-50a5-4748-b30c-7fbb0be30c86.pdf

2022-03-28 15:36 - 2022-03-28 15:36 - 000070873 _____ C:\Users\AA583803\Downloads\Catania Trust 1099.pdf

2022-03-28 15:36 - 2022-03-28 15:36 - 000067323 _____ C:\Users\AA583803\Downloads\TaxDocumentsView (3).pdf

2022-03-28 14:08 - 2022-03-28 14:08 - 000062025 _____ C:\Users\AA583803\Downloads\pollino Historical_Market_Value_with_Hypothetical_BM.pdf

2022-03-28 13:17 - 2022-03-31 18:55 - 000220160 _____ C:\Users\AA583803\Downloads\PerformanceGraphExport (1).xls

2022-03-28 13:16 - 2022-03-28 13:16 - 000178176 _____ C:\Users\AA583803\Downloads\PerformanceGraphExport.xls

2022-03-28 13:08 - 2022-03-28 13:08 - 000176480 _____ C:\Users\AA583803\Downloads\pollino lincoln summary.pdf

2022-03-28 13:06 - 2022-03-28 13:06 - 000106855 _____ C:\Users\AA583803\Downloads\pollino account summary.pdf

2022-03-28 12:55 - 2022-03-28 12:55 - 000071200 _____ C:\Users\AA583803\Downloads\1d784de2-445c-4927-99f7-6290c1aa2121.PDF

2022-03-27 22:47 - 2022-03-27 22:47 - 000296132 _____ C:\Users\AA583803\Downloads\19MPsful_015819609-20130417170605.pdf

2022-03-27 21:48 - 2022-03-27 21:48 - 000058250 _____ C:\Users\AA583803\Downloads\Coverpath Eligibility 1-7-22.pdf

2022-03-27 19:08 - 2022-03-27 19:08 - 000133992 _____ C:\Users\AA583803\Downloads\neiditz emails with CPA.pdf

2022-03-27 13:52 - 2022-03-27 13:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys

2022-03-27 13:52 - 2022-03-27 13:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys

2022-03-27 13:52 - 2022-03-27 13:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys

2022-03-27 13:52 - 2022-03-27 13:52 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe

2022-03-26 17:00 - 2022-03-26 17:00 - 000346901 _____ C:\Users\AA583803\Downloads\Neiditz_1099-B_Inventrust_IVT_817_shs_sold.pdf

2022-03-26 16:57 - 2022-03-26 16:57 - 000354792 _____ C:\Users\AA583803\Downloads\ViewDocument (2).pdf

2022-03-26 16:56 - 2022-03-26 16:56 - 000347673 _____ C:\Users\AA583803\Downloads\Neiditz_1099-B_Inventrust_IVT_585_shs_sold.pdf

2022-03-26 16:42 - 2022-03-26 16:42 - 000355564 _____ C:\Users\AA583803\Downloads\ViewDocument (1).pdf

2022-03-26 12:11 - 2022-03-26 12:11 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task

2022-03-26 12:11 - 2022-03-26 12:11 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk

2022-03-25 17:01 - 2022-03-25 17:01 - 000001175 _____ C:\Users\AA583803\Downloads\tab_account_modelexplorer_1795.csv

2022-03-25 16:38 - 2022-03-25 16:38 - 000561342 _____ C:\Users\AA583803\Downloads\2977f593-de9a-4754-bf52-86f0b1edcae7.pdf

2022-03-25 13:27 - 2022-03-25 13:27 - 000164547 _____ C:\Users\AA583803\Downloads\A_document_is_ready_for_your_electronic_signa.zip

2022-03-25 12:07 - 2022-03-25 12:07 - 000012458 _____ C:\Users\AA583803\Downloads\MML0018_CVRMissingInformation.xlsx

2022-03-25 11:30 - 2022-03-25 11:30 - 000445695 _____ C:\Users\AA583803\Downloads\economictimes.indiatimes.com-Tightening financial conditions sound alarm for world economy (1).pdf

2022-03-25 11:29 - 2022-03-25 11:29 - 000446514 _____ C:\Users\AA583803\Downloads\economictimes.indiatimes.com-Tightening financial conditions sound alarm for world economy.pdf

2022-03-24 18:38 - 2022-03-24 18:38 - 001692607 _____ C:\Users\AA583803\Downloads\Jun_30_2020_Statement.pdf

2022-03-24 18:32 - 2022-03-24 18:32 - 001696439 _____ C:\Users\AA583803\Downloads\Dec_31_2021_Statement.pdf

2022-03-24 17:37 - 2022-03-24 17:37 - 000532252 _____ C:\Users\AA583803\Downloads\report_4426.pdf

2022-03-24 17:36 - 2022-03-24 17:36 - 000529997 _____ C:\Users\AA583803\Downloads\report_2872.pdf

2022-03-24 17:25 - 2022-03-24 17:25 - 000071632 _____ C:\Users\AA583803\Downloads\Anand YTD Portfolio_Summary.pdf

2022-03-24 17:22 - 2022-03-24 17:23 - 000155005 _____ C:\Users\AA583803\Downloads\anand portfolio.PDF

2022-03-24 15:08 - 2022-03-24 15:08 - 000138951 _____ C:\Users\AA583803\Downloads\Ensight & Life Insurance Request Form.pdf

2022-03-24 14:49 - 2022-03-24 14:49 - 000001423 _____ C:\Users\AA583803\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk

2022-03-24 13:01 - 2022-03-24 13:01 - 000157068 _____ C:\Users\AA583803\Downloads\Water-Line-General-Terms-Conditions.pdf

2022-03-23 15:39 - 2022-03-23 15:39 - 002814695 _____ C:\Users\AA583803\Downloads\etien 220323 DI reinstatement.pdf

2022-03-23 14:52 - 2022-03-23 14:53 - 000156284 _____ C:\Users\AA583803\Downloads\monthly market recap feb22.pdf

2022-03-23 14:49 - 2022-03-23 14:49 - 000809206 _____ C:\Users\AA583803\Downloads\wealth-mgt-update-031422.pdf

2022-03-23 14:08 - 2022-03-23 14:08 - 000219803 _____ C:\Users\AA583803\Downloads\combinepdf (48).pdf

2022-03-23 14:05 - 2022-03-23 14:05 - 001154610 _____ C:\Users\AA583803\Downloads\combinepdf (47).pdf

2022-03-23 14:05 - 2022-03-23 14:05 - 000574342 _____ C:\Users\AA583803\Downloads\report_3830.pdf

2022-03-23 14:04 - 2022-03-23 14:04 - 000577175 _____ C:\Users\AA583803\Downloads\report_5946.pdf

2022-03-23 13:53 - 2022-03-23 13:53 - 001074297 _____ C:\Users\AA583803\Downloads\combinepdf (46).pdf

2022-03-23 12:37 - 2022-03-23 12:37 - 000001324 _____ C:\Users\AA583803\Downloads\tab_account_modelexplorer_1482.csv

2022-03-23 10:46 - 2022-03-23 10:46 - 000000509 _____ C:\Users\AA583803\Downloads\event (1).ics

2022-03-22 16:36 - 2022-03-22 16:36 - 000044722 _____ C:\Users\AA583803\Downloads\Neiditz 1099-B.pdf

2022-03-22 15:48 - 2022-03-22 15:48 - 000527442 _____ C:\Users\AA583803\Downloads\report_5217.pdf

2022-03-22 15:44 - 2022-03-22 15:44 - 000010604 _____ C:\Users\AA583803\Downloads\warren Calendar_Market_Value_and_Performance.pdf

2022-03-22 15:39 - 2022-03-22 15:39 - 000062380 _____ C:\Users\AA583803\Downloads\warren port summary.PDF

2022-03-22 15:37 - 2022-03-22 15:37 - 000151694 _____ C:\Users\AA583803\Downloads\warren perf report.PDF

2022-03-22 13:33 - 2022-03-22 13:33 - 000546392 _____ C:\Users\AA583803\Downloads\report_1775.pdf

2022-03-22 13:29 - 2022-03-22 13:29 - 000544166 _____ C:\Users\AA583803\Downloads\report_7281.pdf

2022-03-22 13:16 - 2022-03-22 13:16 - 001984797 _____ C:\Users\AA583803\Downloads\di1075.pdf

2022-03-22 13:09 - 2022-03-22 13:09 - 000107520 _____ C:\Users\AA583803\Downloads\di7137 (4).xls

2022-03-22 12:10 - 2022-03-22 12:10 - 000545094 _____ C:\Users\AA583803\Downloads\report_2399.pdf

2022-03-22 11:54 - 2022-03-14 12:02 - 000384584 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3758.sys

2022-03-22 09:11 - 2022-03-22 09:11 - 000045596 _____ C:\Users\AA583803\Downloads\HSA Transaction Confirmation $2000.pdf

2022-03-22 01:11 - 2022-04-06 10:58 - 000000000 ____D C:\Program Files\CrowdStrike

2022-03-21 18:44 - 2022-03-21 18:44 - 000141468 _____ C:\Users\AA583803\Downloads\PslfApplicationResults_02-18-2022.pdf

2022-03-21 18:41 - 2022-03-21 18:41 - 000133126 _____ C:\Users\AA583803\Downloads\PslfQualifyingPaymentUpdate_02-18-2022.pdf

2022-03-21 16:33 - 2022-03-21 16:33 - 001589578 _____ C:\Users\AA583803\Downloads\combinepdf (45).pdf

2022-03-18 16:34 - 2022-03-18 16:34 - 001511185 _____ C:\Users\AA583803\Downloads\combinepdf (44).pdf

2022-03-18 15:59 - 2022-03-18 15:59 - 001193560 _____ C:\Users\AA583803\Downloads\combinepdf (43).pdf

2022-03-18 15:58 - 2022-03-18 15:58 - 001193562 _____ C:\Users\AA583803\Downloads\combinepdf (42).pdf

2022-03-18 12:38 - 2022-03-18 12:38 - 000058166 _____ C:\Users\AA583803\Downloads\Bernstein Sales Proposal.pdf

2022-03-18 11:35 - 2022-03-18 11:35 - 000001265 _____ C:\Users\AA583803\Downloads\2022 MassMutual Academy Virtual March.ics

2022-03-17 16:28 - 2022-03-17 16:30 - 001331508 _____ C:\Users\AA583803\Downloads\cavaliere DI fact finder.pdf

2022-03-17 15:52 - 2022-03-17 15:52 - 001088224 _____ C:\Users\AA583803\Downloads\di90018.pdf

2022-03-17 14:38 - 2022-03-18 12:27 - 000148515 _____ C:\Users\AA583803\Downloads\mm academy schedule spring 2022.pdf

2022-03-16 18:03 - 2022-03-16 18:03 - 000001624 _____ C:\Users\AA583803\Downloads\reichman 401k transactions.csv

2022-03-16 17:59 - 2022-03-16 17:59 - 000003599 _____ C:\Users\AA583803\Downloads\InvestmentTransactions (3).csv

2022-03-16 14:26 - 2022-03-16 14:26 - 000240526 _____ C:\Users\AA583803\Downloads\CanNutritionValues_E (1).pdf

2022-03-16 14:20 - 2022-03-16 14:20 - 000240526 _____ C:\Users\AA583803\Downloads\CanNutritionValues_E.pdf

2022-03-16 11:30 - 2022-03-16 11:30 - 000153513 _____ C:\Users\AA583803\Downloads\Reichman OD report.PDF

2022-03-16 11:02 - 2022-03-16 11:02 - 000565919 _____ C:\Users\AA583803\Downloads\reichman presentation.pdf

2022-03-15 23:49 - 2022-03-15 23:49 - 001941738 _____ C:\Users\AA583803\Downloads\barn door track 3132194.pdf

2022-03-15 23:49 - 2022-03-15 23:49 - 000305354 _____ C:\Users\AA583803\Downloads\barn door pull 681 manual.pdf

2022-03-15 23:46 - 2022-03-15 23:46 - 000304324 _____ C:\Users\AA583803\Downloads\681 manual.pdf

2022-03-15 23:11 - 2022-03-15 23:11 - 001941722 _____ C:\Users\AA583803\Downloads\3132194.pdf

2022-03-15 13:36 - 2022-03-15 13:36 - 001073453 _____ C:\Users\AA583803\Downloads\combinepdf (41).pdf

2022-03-15 13:36 - 2022-03-15 13:36 - 001073453 _____ C:\Users\AA583803\Downloads\combinepdf (40).pdf

2022-03-15 13:35 - 2022-03-15 13:35 - 000098850 _____ C:\Users\AA583803\Downloads\metlife fax cover sheet.pdf

2022-03-15 13:32 - 2022-03-15 13:35 - 000108088 _____ C:\Users\AA583803\Downloads\metlife fax cover sheet.xlsx

2022-03-15 13:22 - 2022-03-15 13:22 - 000993676 _____ C:\Users\AA583803\Downloads\03152022131826-0001-pages-deleted.pdf

2022-03-15 13:21 - 2022-03-15 13:21 - 000998040 _____ C:\Users\AA583803\Downloads\03152022131826-0001.pdf

2022-03-15 11:25 - 2022-03-15 11:25 - 000130548 _____ C:\Users\AA583803\Downloads\Wenke Portfolio Report 03-14-22.PDF

2022-03-15 11:21 - 2022-03-15 11:21 - 000052144 _____ C:\Users\AA583803\Downloads\jbod1 Portfolio_Summary.pdf

2022-03-15 11:17 - 2022-03-15 11:18 - 000041685 _____ C:\Users\AA583803\Downloads\jbod2 Performance_Summary.pdf

2022-03-15 11:11 - 2022-03-15 11:11 - 000011706 _____ C:\Users\AA583803\Downloads\jbod4 Portfolio Holdings.pdf

2022-03-15 10:29 - 2022-03-15 10:29 - 000041408 _____ C:\Users\AA583803\Downloads\jbod3 Allocation and Holdings Summary.pdf

2022-03-15 09:59 - 2022-03-15 10:00 - 000068371 _____ C:\Users\AA583803\Downloads\qwnkw MyPDF (5).PDF

2022-03-14 17:55 - 2022-03-14 17:55 - 000316872 _____ C:\Users\AA583803\Downloads\2015-03-12.pdf

2022-03-14 17:23 - 2022-03-14 17:23 - 001416035 _____ C:\Users\AA583803\Downloads\2387cfe1-1f98-4baf-bc39-a67b698a9418.pdf

2022-03-14 15:10 - 2022-03-14 15:10 - 001321424 _____ C:\Users\AA583803\Downloads\IVT-Reallocations-2005-2021.pdf

2022-03-14 13:35 - 2022-03-14 13:35 - 000009168 _____ C:\Users\AA583803\Downloads\Copy of Cost Basis Spreadsheet Template.xlsx

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-04-13 17:58 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2022-04-13 17:52 - 2019-01-08 16:13 - 000000000 ____D C:\Program Files (x86)\Google

2022-04-13 17:42 - 2020-12-17 07:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\CrowdStrike

2022-04-13 14:17 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\CbsTemp

2022-04-13 14:08 - 2020-10-17 17:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy

2022-04-13 14:03 - 2019-01-10 01:08 - 000000000 ____D C:\ProgramData\Package Cache

2022-04-13 10:42 - 2019-12-07 05:13 - 000000000 ____D C:\WINDOWS\INF

2022-04-12 19:02 - 2019-01-08 13:12 - 000000000 ____D C:\Users\AA583803\AppData\Local\D3DSCache

2022-04-12 16:41 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps

2022-04-12 16:41 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\AppReadiness

2022-04-12 16:23 - 2020-10-17 17:27 - 000842522 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2022-04-12 16:06 - 2021-03-11 15:37 - 000000000 ___RD C:\Users\AA583803\OneDrive - MassMutual

2022-04-12 16:02 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports

2022-04-12 16:00 - 2021-06-14 11:35 - 000000000 ____D C:\Users\AA583803\AppData\Local\Dropbox

2022-04-12 15:59 - 2021-03-12 13:34 - 000000000 ___RD C:\Users\AA583803\iCloudPhotos

2022-04-12 15:59 - 2020-10-17 17:24 - 000000000 ____D C:\Users\AA583803

2022-04-12 15:59 - 2020-08-20 12:05 - 000000000 ___RD C:\Users\AA583803\iCloudDrive

2022-04-12 15:59 - 2019-01-08 13:10 - 000000000 ___RD C:\Users\AA583803\OneDrive

2022-04-12 15:58 - 2022-02-08 07:12 - 000008192 ___SH C:\DumpStack.log.tmp

2022-04-12 15:58 - 2021-06-14 11:35 - 000000934 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job

2022-04-12 15:58 - 2021-06-14 11:35 - 000000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job

2022-04-12 15:58 - 2021-05-03 16:29 - 000000000 ____D C:\ProgramData\VMWOSQEXT

2022-04-12 15:58 - 2021-01-23 14:38 - 000000000 ____D C:\ProgramData\CrowdStrike

2022-04-12 15:58 - 2020-10-17 17:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT

2022-04-12 15:58 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\ServiceState

2022-04-12 15:58 - 2019-12-07 05:03 - 000016384 _____ C:\WINDOWS\system32\config\ELAM

2022-04-12 15:58 - 2019-01-08 13:10 - 000000000 __SHD C:\Users\AA583803\IntelGraphicsProfiles

2022-04-12 15:58 - 2018-12-17 21:38 - 000000000 ____D C:\Intel

2022-04-12 15:58 - 2018-07-25 09:07 - 000000000 ____D C:\Program Files (x86)\Microsoft Office

2022-04-12 11:57 - 2019-04-22 10:02 - 000000000 ____D C:\Users\AA583803\AppData\Roaming\Zoom Plugin

2022-04-12 11:44 - 2019-01-08 13:10 - 000000000 ____D C:\Users\AA583803\AppData\Local\Packages

2022-04-12 11:32 - 2020-06-18 00:53 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk

2022-04-07 01:35 - 2020-09-30 01:24 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools

2022-04-06 15:18 - 2019-01-08 16:13 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2022-04-06 15:16 - 2021-09-21 11:21 - 000002076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk

2022-04-06 15:16 - 2021-09-21 11:21 - 000001907 _____ C:\Users\Default\Desktop\Google Slides.lnk

2022-04-06 15:16 - 2021-09-21 11:21 - 000001907 _____ C:\Users\Default\Desktop\Google Sheets.lnk

2022-04-06 15:16 - 2021-09-21 11:21 - 000001895 _____ C:\Users\Default\Desktop\Google Docs.lnk

2022-04-06 10:58 - 2019-12-07 05:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP

2022-04-06 10:16 - 2020-10-18 14:55 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6a4cc79b7edab

2022-04-06 10:16 - 2020-10-17 17:30 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA

2022-04-04 20:42 - 2021-12-11 16:47 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1146508179-405363288-658039003-1003

2022-04-04 15:03 - 2021-12-21 19:42 - 000000000 ____D C:\ProgramData\CanonIJPLM

2022-04-01 18:26 - 2021-05-25 14:35 - 000491691 _____ C:\Users\AA583803\Downloads\Planning ADV.PDF

2022-03-31 12:09 - 2021-06-14 11:35 - 000000000 ____D C:\Program Files (x86)\Dropbox

2022-03-29 15:04 - 2021-07-15 11:01 - 000000000 ____D C:\Users\AA583803\OneDrive - MassMutual\Documents\My Kindle Content

2022-03-29 14:59 - 2021-07-15 11:00 - 000000000 ____D C:\Users\AA583803\AppData\Local\Amazon

2022-03-23 21:13 - 2020-09-30 01:24 - 000601432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll

2022-03-23 21:12 - 2020-09-30 01:24 - 000483664 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll

==================== Files in the root of some directories ========

2020-03-17 19:33 - 2020-03-17 19:33 - 000022273 _____ () C:\Users\AA583803\AppData\Roaming\Comma Separated Values.ADR

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)