Computer has started to run very slowly | #firefox | #chrome | #microsoftedge

Hello,

My laptop running Win10Pro has started to run very slowly, much slower than it has ever run before.

 

I will be very grateful for any help with this.

 

I enclose the FRST logs below.

 

Many thanks in advance.

Best regards,

Carrie

 

******************************

FRST.txt

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Run: [RtkAudUService] => C:WINDOWSSystem32RtkAudUService64.exe [1164080 2020-09-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM…Run: [Open-Shell Start Menu] => C:Program FilesOpen-ShellStartMenu.exe [216576 2018-08-18] (Open-Shell) [File not signed]
HKLM…Run: [] => [X]
HKLM…Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:Program FilesCOMODOCOMODO Internet Securitycis.exe [13059536 2019-10-17] (Comodo Security Solutions -> COMODO)
HKLM…Run: [IAStorIcon] => C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorIcon.exe [319520 2018-07-05] (Intel® Rapid Storage Technology -> Intel Corporation)
HKLM…Run: [AdobeAAMUpdater-1.0] => C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM…Run: [CDAServer] => C:Program FilesCommon FilesCommon Desktop AgentCDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM…Run: [AvastUI.exe] => C:Program FilesAvast SoftwareAvastAvLaunch.exe [123672 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32…Run: [Avira SystrayStartTrigger] => C:Program Files (x86)AviraLauncherAvira.SystrayStartTrigger.exe [706192 2021-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32…Run: [Avira System Speedup User Starter] => C:Program Files (x86)AviraSystem SpeedupAvira.SystemSpeedup.Core.Common.Starter.exe [331544 2021-03-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32…Run: [IseUI] => C:Program Files (x86)COMODOInternet Security Essentialsvkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32…Run: [] => [X]
HKLM-x32…Run: [SunJavaUpdateSched] => C:Program Files (x86)Common FilesJavaJava Updatejusched.exe [706680 2020-09-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32…Run: [ProductUpdater] => C:Program Files (x86)Common FilesFreemake SharedProductUpdaterProductUpdater.exe [188808 2021-06-30] (Mixbyte Inc -> )
HKLM…PoliciesExplorer: [NoWelcomeScreen] 1
HKUS-1-5-21-3899059483-3202621829-1806181359-1001…Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:Program Files (x86)Common FilesAheadLibNMBgMonitor.exe [152872 2007-06-27] (Nero AG -> Nero AG)
HKUS-1-5-21-3899059483-3202621829-1806181359-1001…Run: [AdobeBridge] => [X]
HKUS-1-5-21-3899059483-3202621829-1806181359-1001…Run: [] => [X]
HKUS-1-5-21-3899059483-3202621829-1806181359-1001…MountPoints2: {ddec52a4-f43b-11e9-a549-806e6f6e6963} – “D:autorun.exe”
HKUS-1-5-21-3899059483-3202621829-1806181359-1001…Winlogon: [Shell] C:WINDOWSexplorer.exe [4685120 2021-05-21] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKLM…Windows x64Print Processorssml371pp: C:WindowsSystem32spoolprtprocsx64sml371pp.dll [118784 2013-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Windows ® Codename Longhorn DDK provider)
HKLM…Windows x64Print Processorsssi2mPC: C:WindowsSystem32spoolprtprocsx64ssi2mpc.dll [41984 2013-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Windows ® Codename Longhorn DDK provider)
HKLM…PrintMonitorsAdobe PDF Port Monitor: C:WINDOWSsystem32AdobePDF.dll [65096 2018-12-04] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM…PrintMonitorspdfcmon: C:WINDOWSsystem32pdfcmon.dll [117248 2019-10-25] (pdfforge GmbH) [File not signed]
HKLM…PrintMonitorsssi2m Langmon: C:WINDOWSsystem32ssi2mlm.dll [34304 2011-06-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLMSoftwareWow6432NodeMicrosoftActive SetupInstalled Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
Startup: C:Userscrepe9userAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupRainmeter.lnk [2021-02-19]
ShortcutTarget: Rainmeter.lnk -> C:Program FilesRainmeterRainmeter.exe (Firebit OU -> Rainmeter)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:ProgramDataNTUSER.pol: Restriction <==== ATTENTION
HKLMSOFTWAREPoliciesMozillaFirefox: Restriction <==== ATTENTION
HKLMSOFTWAREPoliciesGoogle: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {264A0F13-B89A-4A6D-93CC-611ACA791194} – System32TasksAvira_Security_Service_SCM_Watchdog => C:Program Files (x86)AviraSecurityAvira.Spotlight.Service.Worker.exe [248040 2021-06-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {2EA9854F-6685-44C2-9747-30C85CEA5EBD} – System32TasksMozillaFirefox Default Browser Agent E7CF176E110C211B => C:Program Files (x86)Mozilla Firefoxdefault-browser-agent.exe [681400 2021-07-14] (Mozilla Corporation -> Mozilla Foundation)
Task: {2F936A27-4BB7-4A6C-B5A5-8F9A6FD4960F} – System32TasksAvast SoftwareOverseer => C:Program FilesCommon FilesAvast SoftwareOverseeroverseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {394A7865-9DE3-4FE0-8C07-99E15357A97B} – System32TasksCOMODOCOMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:Program FilesCOMODOCOMODO Internet Securitycfpconfg.exe [5701072 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {42D96B15-5450-4715-BEB0-AFC9CA220732} – System32TasksCOMODOCOMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:Program FilesCOMODOCOMODO Internet Securitycis.exe [13059536 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {48EB058C-7F1A-4114-8ECC-E8D63A269859} – System32TasksAvira_Security_Update => C:Program Files (x86)AviraSecurityAvira.Spotlight.Common.Updater.exe [251112 2021-06-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {4A3346A6-4804-4CBE-BD94-1B3111971062} – System32TasksAviraSystemSpeedupUpdate => C:ProgramDataAviraSystemSpeedupUpdateavira_speedup_setup_update.exe [29802464 2021-05-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {4CBD4FD6-25BD-40D6-A7FB-CDBD6B54B1AB} – System32TasksAdobeGCInvoker-1.0 => C:Program Files (x86)Common FilesAdobeAdobeGCClientAGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {7B66FBDB-0E34-4960-8A58-0514E474A004} – HkeyTrayLaunch -> No File <==== ATTENTION
Task: {882C394F-3355-4340-839C-8671F26A7989} – System32TasksCCleaner Update => C:Program FilesCCleanerCCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9AA21456-C9F0-4634-8BF3-73690A2EB0C2} – System32TasksCOMODOCOMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:Program FilesCOMODOCOMODO Internet Securitycfpconfg.exe [5701072 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {A1682416-811D-4950-9A4A-8DB6DCD767ED} – System32TasksAvast Emergency Update => C:Program FilesAvast SoftwareAvastAvEmUpdate.exe [4903192 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
Task: {B2CCDF66-3ABA-4595-9030-0A037C10309C} – System32TasksAvira_Antivirus_Systray => C:Program Files (x86)AviraAntivirusavgnt.exe [2651056 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {B5025176-2989-494B-975B-5D326DF372E6} – System32TasksCOMODOCOMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:Program FilesCOMODOCOMODO Internet Securitycfpconfg.exe [5701072 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {CA83CDF3-F460-4FDC-B9D0-DE66ADD17484} – System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {CD7DCF87-2308-456B-B10F-141133B78814} – System32TasksCOMODOCOMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:Program FilesCOMODOCOMODO Internet Securitycfpconfg.exe [5701072 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {D938EC6C-9B25-4BFC-87AC-4A33E2DC7D89} – System32TasksCOMODOCOMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:Program FilesCOMODOCOMODO Internet Securitycis.exe [13059536 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {F5CF8922-F4C6-4BB0-BCD3-A49ABE1B3E6A} – System32TasksCCleanerSkipUAC => C:Program FilesCCleanerCCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

TcpipParameters: [DhcpNameServer] 192.168.1.1
Tcpip..Interfaces{c75b2bb4-1cbe-44d5-a206-218656bd6da3}: [DhcpNameServer] 192.168.1.1
Tcpip..Interfaces{eaf70b9d-6ec1-4533-9510-1322c2d2071c}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF DefaultProfile: 28yx63gz.default
FF ProfilePath: C:Userscrepe9userAppDataRoamingMozillaFirefoxProfiles5n4z3kx1.default-release [2021-06-13]
FF ProfilePath: C:Userscrepe9userAppDataRoamingMozillaFirefoxProfiles28yx63gz.default [2021-07-14]
FF Homepage: MozillaFirefoxProfiles28yx63gz.default -> about:blank
FF NetworkProxy: MozillaFirefoxProfiles28yx63gz.default -> type”, 0
FF Extension: (JavaScript-Java Bridge) – C:Userscrepe9userAppDataRoamingMozillaFirefoxProfiles28yx63gz.defaultExtensionsjsjbridge@advancedcontrols.com.au.xpi [2020-12-05]
FF Extension: (Take Webpage Screenshots Entirely – FireShot) – C:Userscrepe9userAppDataRoamingMozillaFirefoxProfiles28yx63gz.defaultExtensions{0b457cAA-602d-484a-8fe7-c1d894a011ba}.xpi [2021-06-07]
FF Extension: (JavaScript Toggle On and Off) – C:Userscrepe9userAppDataRoamingMozillaFirefoxProfiles28yx63gz.defaultExtensions{479f0278-2c34-4365-b9f0-1d328d0f0a40}.xpi [2020-12-01]
FF Extension: (ColorZilla) – C:Userscrepe9userAppDataRoamingMozillaFirefoxProfiles28yx63gz.defaultExtensions{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2019-10-21]
FF Extension: (Video DownloadHelper) – C:Userscrepe9userAppDataRoamingMozillaFirefoxProfiles28yx63gz.defaultExtensions{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-01]
FF Extension: (Adblock Plus – free ad blocker) – C:Userscrepe9userAppDataRoamingMozillaFirefoxProfiles28yx63gz.defaultExtensions{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-20]
FF HKLM…FirefoxExtensions: [web2pdfextension.17@acrobat.adobe.com] – C:Program Files (x86)AdobeAcrobat DCAcrobatBrowserWCFirefoxExtnWebExtnsigned_extnadobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) – C:Program Files (x86)AdobeAcrobat DCAcrobatBrowserWCFirefoxExtnWebExtnsigned_extnadobe_acrobat-1.0-windows.xpi [2018-12-04]
FF HKLM-x32…FirefoxExtensions: [web2pdfextension.17@acrobat.adobe.com] – C:Program Files (x86)AdobeAcrobat DCAcrobatBrowserWCFirefoxExtnWebExtnsigned_extnadobe_acrobat-1.0-windows.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:WINDOWSsystem32MacromedFlashNPSWF64_32_0_0_433.dll [2020-10-02] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:Program FilesJavajre1.8.0_271bindtpluginnpDeployJava1.dll [2020-12-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:Program FilesJavajre1.8.0_271binplugin2npjp2.dll [2020-12-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:Program FilesVideoLANVLCnpvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:Program Files (x86)Common FilesAdobeOOBEPDAppCCMUtilitiesnpAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:WINDOWSSysWOW64MacromedFlashNPSWF32_32_0_0_433.dll [2020-10-02] (Adobe Inc. -> )
FF Plugin-x32: Adobe Acrobat -> C:Program Files (x86)AdobeAcrobat DCAcrobatAirnppdf32.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:Program Files (x86)AdobeReader 11.0ReaderAIRnppdf32.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR HKLM…ChromeExtension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32…ChromeExtension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32…ChromeExtension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AntiVirMailService; C:Program Files (x86)AviraAntivirusavmailc7.exe [1206648 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:Program Files (x86)AviraAntivirusProtectedService.exe [538000 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:Program Files (x86)AviraAntivirussched.exe [485048 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:Program Files (x86)AviraAntivirusavguard.exe [485048 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:Program Files (x86)AviraAntivirusavwebg7.exe [574672 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 aswbIDSAgent; C:Program FilesAvast SoftwareAvastaswidsagent.exe [8249936 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:Program FilesAvast SoftwareAvastAvastSvc.exe [625432 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:Program FilesAvast SoftwareAvastaswToolsSvc.exe [373528 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R2 Avira.ServiceHost; C:Program Files (x86)AviraLauncherAvira.ServiceHost.exe [634768 2021-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:Program Files (x86)AviraOptimizer HostAvira.OptimizerHost.exe [2988816 2021-03-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:Program Files (x86)AviraVPNAvira.VpnService.exe [384784 2021-07-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:Program Files (x86)AviraSecurityAvira.Spotlight.Service.exe [264880 2021-06-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:Program Files (x86)AviraSoftwareUpdaterAvira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 CmdAgent; C:Program FilesCOMODOCOMODO Internet Securitycmdagent.exe [11326912 2019-10-21] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:Program FilesCOMODOCOMODO Internet Securitycmdagent.exe [11326912 2019-10-21] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:Program FilesCOMODOCOMODO Internet Securitycmdvirth.exe [2649040 2019-10-17] (Comodo Security Solutions -> COMODO)
R2 DragonUpdater; C:Program Files (x86)ComodoDragondragon_updater.exe [2259768 2021-06-29] (Comodo Security Solutions -> Comodo)
S2 Freemake Improver; C:ProgramDataFreemakeFreemakeUtilsServiceFreemakeUtilsService.exe [86920 2021-06-30] (Mixbyte Inc -> Freemake)
R2 HKClipSvc; C:Program Files (x86)HotkeyDriverx64HKClipSvc.exe [413128 2018-05-31] (Microsoft Windows Hardware Compatibility Publisher -> Insyde Software Corp.)
R2 isesrv; C:Program Files (x86)COMODOInternet Security Essentialsisesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R3 NMIndexingService; C:Program Files (x86)Common FilesAheadLibNMIndexingService.exe [279848 2007-06-27] (Nero AG -> Nero AG)
R2 PowerBiosServer; C:Program Files (x86)HotkeyHotkeyService.exe [34304 2017-12-25] (CLEVO CO.) [File not signed]
S3 Sense; C:Program FilesWindows Defender Advanced Threat ProtectionMsSense.exe [6264152 2021-05-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VBoxSDS; C:Program FilesOracleVirtualBoxVBoxSDS.exe [744968 2020-05-14] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0NisSrv.exe [2665432 2021-07-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0MsMpEng.exe [136640 2021-07-14] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:WINDOWSSystem32driversAppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:WINDOWSSystem32driversAppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:WINDOWSSystem32driversaswArDisk.sys [35720 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:WINDOWSSystem32driversaswArPot.sys [216928 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:WINDOWSSystem32driversaswbidsdriver.sys [366616 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:WINDOWSSystem32driversaswbidsh.sys [250392 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:WINDOWSSystem32driversaswbuniv.sys [99352 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:WINDOWSSystem32driversaswElam.sys [17328 2021-05-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:WINDOWSSystem32driversaswKbd.sys [41352 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:WINDOWSSystem32driversaswMonFlt.sys [182600 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:WINDOWSSystem32driversaswRdr2.sys [107848 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:WINDOWSSystem32driversaswRvrt.sys [82912 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:WINDOWSSystem32driversaswSnx.sys [851192 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:WINDOWSSystem32driversaswSP.sys [471920 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:WINDOWSSystem32driversaswStm.sys [215384 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:WINDOWSSystem32driversaswVmm.sys [327536 2021-06-25] (Avast Software s.r.o. -> AVAST Software)
R0 avdevprot; C:WINDOWSSystem32DRIVERSavdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:WINDOWSSystem32driversavelam.sys [22848 2021-07-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:WINDOWSSystem32DRIVERSavgntflt.sys [208336 2021-07-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:WINDOWSsystem32DRIVERSavipbb.sys [199312 2021-03-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:WINDOWSsystem32DRIVERSavkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:WINDOWSsystem32DRIVERSavnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:WINDOWSSystem32Driversavusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 cmdboot; C:WINDOWSSystem32DRIVERScmdboot.sys [17872 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmderd; C:WINDOWSSystem32DRIVERScmderd.sys [38848 2019-10-16] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:WINDOWSSystem32DRIVERScmdguard.sys [841408 2019-10-16] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:WINDOWSsystem32DRIVERScmdhlp.sys [47080 2019-10-16] (Comodo Security Solutions, Inc. -> COMODO)
R3 HKKbdFltr; C:WINDOWSsystem32DRIVERSHKKbdFltr.sys [38624 2018-05-31] (WDKTestCert stone.cheng,131710889793483852 -> Insyde Software Corp.)
R3 HKMouFltr; C:WINDOWSsystem32DRIVERSHKMouFltr.sys [37624 2018-05-31] (WDKTestCert stone.cheng,131710889912565784 -> Insyde Software Corp.)
R1 inspect; C:WINDOWSsystem32DRIVERSinspect.sys [129208 2019-10-16] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:WINDOWSsystem32driversisedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 Netaapl; C:WINDOWSSystem32driversnetaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 RSP2STOR; C:WINDOWSSystem32driversRtsP2Stor.sys [355848 2020-09-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 VBoxNetAdp; C:WINDOWSsystem32DRIVERSVBoxNetAdp6.sys [237824 2020-05-14] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:WINDOWSsystem32DRIVERSVBoxNetLwf.sys [247224 2020-05-14] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:WINDOWSsystem32driverswdWdBoot.sys [49560 2021-07-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:WINDOWSsystem32driverswdWdFilter.sys [425192 2021-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:WINDOWSSystem32driverswdWdNisDrv.sys [76008 2021-07-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-14 14:45 – 2021-07-14 14:46 – 000022761 _____ C:Userscrepe9userDesktopFRST.txt
2021-07-14 14:45 – 2021-07-14 14:45 – 000000000 _____ C:Userscrepe9userDesktopAddition.txt
2021-07-14 14:42 – 2021-07-14 14:46 – 000000000 ____D C:FRST
2021-07-14 14:41 – 2021-07-14 14:41 – 000000000 ____D C:Userscrepe9userDesktopHijackThis
2021-07-14 14:41 – 2021-07-14 14:41 – 000000000 ____D C:Program Files (x86)setup_HijackThis
2021-07-14 14:40 – 2021-07-14 14:41 – 002301440 _____ (Farbar) C:Userscrepe9userDesktopFRST64.exe
2021-07-14 13:01 – 2021-07-14 13:04 – 000000000 ____D C:Userscrepe9userAppDataLocalWhatsApp
2021-07-14 12:32 – 2021-07-14 12:32 – 000000000 ____D C:Userscrepe9userDownloadsbackups
2021-07-14 12:16 – 2021-07-14 12:16 – 000000000 ____D C:WINDOWSsystem32TasksMozilla
2021-07-14 12:13 – 2021-06-25 17:18 – 000339736 _____ (AVAST Software) C:WINDOWSsystem32aswBoot.exe
2021-07-14 11:49 – 2021-07-14 11:49 – 000000000 ____D C:UsersAdministratorAppDataRoamingAvast Software
2021-07-14 11:49 – 2021-07-14 11:49 – 000000000 ____D C:UsersAdministratorAppDataLocalCEF
2021-07-14 11:44 – 2021-07-14 11:44 – 000000000 ____D C:UsersAdministratorAppDataRoamingSun
2021-07-14 11:44 – 2021-07-14 11:44 – 000000000 ____D C:UsersAdministratorAppDataLocalLowSun
2021-07-14 11:40 – 2021-07-14 11:41 – 000000000 ___RD C:UsersAdministratorOneDrive
2021-07-14 11:40 – 2021-07-14 11:40 – 000000000 ____D C:UsersAdministratorAppDataRoamingIntel Corporation
2021-07-14 11:40 – 2021-07-14 11:40 – 000000000 ____D C:UsersAdministratorAppDataLocalPlaceholderTileLogoFolder
2021-07-14 11:39 – 2021-07-14 11:49 – 000000000 ____D C:UsersAdministratorAppDataLocalOpenShell
2021-07-14 11:39 – 2021-07-14 11:49 – 000000000 ____D C:UsersAdministratorAppDataLocalAdobe
2021-07-14 11:39 – 2021-07-14 11:39 – 000000000 ___HD C:UsersAdministratorMicrosoftEdgeBackups
2021-07-14 11:38 – 2021-07-14 11:38 – 000000000 ____D C:UsersAdministratorAppDataLocalMicrosoftEdge
2021-07-14 11:37 – 2021-07-14 13:12 – 000000000 ___RD C:UsersAdministrator3D Objects
2021-07-14 11:37 – 2021-07-14 13:12 – 000000000 ____D C:UsersAdministratorAppDataLocalConnectedDevicesPlatform
2021-07-14 11:37 – 2021-07-14 13:12 – 000000000 ____D C:UsersAdministrator
2021-07-14 11:37 – 2021-07-14 11:39 – 000000000 ____D C:UsersAdministratorAppDataLocalPackages
2021-07-14 11:37 – 2021-07-14 11:38 – 000000000 ____D C:UsersAdministratorAppDataLocalIntel
2021-07-14 11:37 – 2021-07-14 11:37 – 000000000 __SHD C:UsersAdministratorIntelGraphicsProfiles
2021-07-14 11:37 – 2021-07-14 11:37 – 000000000 ____D C:UsersAdministratorAppDataRoamingIntel
2021-07-14 11:37 – 2021-07-14 11:37 – 000000000 ____D C:UsersAdministratorAppDataRoamingAdobe
2021-07-14 11:37 – 2021-07-14 11:37 – 000000000 ____D C:UsersAdministratorAppDataLocalLowIntel
2021-07-14 11:37 – 2021-07-14 11:37 – 000000000 ____D C:UsersAdministratorAppDataLocalPublishers
2021-07-14 08:24 – 2021-07-14 13:12 – 000000000 ____D C:Userscrepe9userDesktopMS Office hacks
2021-07-13 23:24 – 2021-07-13 23:24 – 000000000 ____D C:Userscrepe9userlog
2021-07-13 23:24 – 2021-07-13 23:24 – 000000000 ____D C:Userscrepe9userAppDataLocalIcecream
2021-07-13 23:24 – 2021-07-13 23:24 – 000000000 ____D C:Userscrepe9userAppDataLocalCrashRpt
2021-07-13 23:24 – 2021-07-13 23:24 – 000000000 ____D C:Userscrepe9user.Icecream Slideshow Maker
2021-07-13 23:23 – 2021-07-14 13:12 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsIcecream Slideshow Maker
2021-07-13 23:23 – 2021-07-14 13:12 – 000000000 ____D C:Program Files (x86)Icecream Slideshow Maker
2021-07-13 23:23 – 2021-07-13 23:23 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsXiph.Org
2021-07-13 23:23 – 2021-07-13 23:23 – 000000000 ____D C:Program Files (x86)Xiph.Org
2021-07-13 23:17 – 2021-07-13 23:17 – 000000000 ___HD C:Userscrepe9userDocumentsKingsoftData
2021-07-13 23:17 – 2021-07-13 23:17 – 000000000 ____D C:ProgramDataKingsoft
2021-07-13 23:16 – 2021-07-14 13:12 – 000000000 ____D C:Userscrepe9userAppDataRoamingkingsoft
2021-07-13 22:46 – 2021-07-13 22:46 – 000000000 ____D C:Userscrepe9userDocumentsCustom Office Templates
2021-07-13 19:30 – 2021-07-13 19:30 – 000000000 ____D C:ProgramDataMicrosoft Toolkit
2021-07-13 19:17 – 2021-07-13 19:17 – 000000000 ____D C:Program Files (x86)Microsoft Analysis Services
2021-07-13 19:11 – 2021-07-14 13:12 – 000000000 ____D C:Userscrepe9userDesktopfolder
2021-07-13 18:54 – 2021-07-13 18:56 – 668779535 _____ C:Userscrepe9userDownloadsoffice_2013-win8.zip
2021-07-13 18:33 – 2021-07-13 18:34 – 050791575 _____ C:Userscrepe9userDownloadsMsKit.zip
2021-07-13 14:45 – 2021-07-13 14:45 – 000000000 ____D C:Program Files (x86)Microsoft SQL Server Compact Edition
2021-07-13 14:44 – 2021-07-14 09:09 – 000000000 ____D C:Program FilesMicrosoft Office
2021-07-13 14:43 – 2021-07-14 13:12 – 000000000 ____D C:Userscrepe9userAppDataLocalMicrosoft Help
2021-07-13 14:42 – 2021-07-13 14:42 – 000000000 __RHD C:MSOCache
2021-07-13 14:38 – 2021-07-14 13:12 – 000000000 ____D C:Program FilesPowerISO
2021-07-13 09:04 – 2021-07-13 09:06 – 000000000 ____D C:Userscrepe9userAppDataRoamingActivePresenter
2021-07-13 09:04 – 2021-07-13 09:04 – 000000000 ____D C:Program Files (x86)ATOMI
2021-07-12 23:04 – 2021-07-12 23:04 – 000470060 _____ C:Userscrepe9userDesktopgate.wav
2021-07-12 23:04 – 2021-07-12 23:04 – 000437804 _____ C:Userscrepe9userDesktopdog.wav
2021-07-12 19:59 – 2021-07-14 02:24 – 000000000 ____D C:Userscrepe9userDesktopPowerPoint Ebook Templates
2021-07-12 15:13 – 2021-07-12 15:13 – 011383056 _____ C:Userscrepe9userDesktoplibre office impress manual.pdf
2021-07-11 19:36 – 2021-07-11 19:36 – 000062549 _____ C:Userscrepe9userDesktopGodel and von Neumann reincarnation.pdf
2021-07-05 10:29 – 2021-07-14 13:12 – 000000000 ____D C:Userscrepe9userNCH Software Suite
2021-07-05 10:08 – 2021-07-14 13:12 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFreemake
2021-07-05 10:08 – 2021-07-14 13:11 – 000000000 ____D C:Userscrepe9userAppDataRoamingMicrosoftWindowsStart MenuProgramsFreemake
2021-07-05 10:08 – 2021-07-05 10:08 – 000000000 ____D C:Userscrepe9userDocumentsFreemake
2021-07-05 10:08 – 2021-07-05 10:08 – 000000000 ____D C:Userscrepe9userAppDataLocalFreemakeVideoConverter
2021-07-05 10:08 – 2021-07-05 10:08 – 000000000 ____D C:ProgramDataFreemake
2021-07-05 10:07 – 2021-07-14 13:11 – 000000000 ____D C:Program Files (x86)Freemake
2021-07-05 09:32 – 2021-07-05 09:32 – 000000000 ____D C:Program Files (x86)Prism Video Converter
2021-07-05 08:52 – 2021-07-14 13:11 – 000000000 ____D C:Userscrepe9userAppDataRoamingNCH Software
2021-07-05 08:52 – 2021-07-14 13:11 – 000000000 ____D C:Program Files (x86)NCH Software
2021-07-05 08:52 – 2021-07-14 12:21 – 000000000 ____D C:WINDOWSsystem32TasksNCH Software
2021-07-05 08:52 – 2021-07-08 20:45 – 000000000 ____D C:ProgramDataNCH Software
2021-07-05 08:52 – 2021-07-05 10:29 – 000001212 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsPrism Video File Converter.lnk
2021-07-05 08:52 – 2021-07-05 08:52 – 000002094 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsNCH Suite.lnk
2021-07-05 08:33 – 2021-07-14 13:12 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsDVD Shrink
2021-07-05 08:33 – 2021-07-05 08:34 – 000000000 ____D C:ProgramDataDVD Shrink
2021-07-05 08:33 – 2021-07-05 08:33 – 000000000 ____D C:Program Files (x86)DVD Shrink
2021-07-05 08:22 – 2021-07-05 10:03 – 000000000 ____D C:Userscrepe9userAppDataRoamingdvdcss
2021-06-26 10:52 – 2021-06-26 10:52 – 000001527 _____ C:Userscrepe9userDesktop!extremely ongoing.lnk
2021-06-26 00:59 – 2021-06-26 00:59 – 000004709 _____ C:Userscrepe9userAppDataLocalrecently-used.xbel
2021-06-26 00:34 – 2021-06-26 00:34 – 000000055 _____ C:Userscrepe9user.gtk-bookmarks
2021-06-25 17:18 – 2021-06-25 17:18 – 000215384 _____ (AVAST Software) C:WINDOWSsystem32DriversaswStm.sys
2021-06-22 17:53 – 2021-07-14 13:12 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSkype
2021-06-19 23:37 – 2021-06-19 23:37 – 000296304 _____ C:Userscrepe9userDownloadsCOM(2018)244_0.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-14 14:45 – 2019-10-21 23:28 – 000000000 ____D C:Userscrepe9userAppDataRoamingAzureus
2021-07-14 14:37 – 2019-10-21 20:36 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2021-07-14 14:28 – 2019-10-21 22:46 – 000000000 ____D C:Userscrepe9userAppDataLocalLowMozilla
2021-07-14 14:17 – 2019-10-21 19:49 – 000000000 ____D C:WINDOWSsystem32SleepStudy
2021-07-14 13:55 – 2020-09-08 01:51 – 000000000 ____D C:Userscrepe9userAppDataRoamingxm1
2021-07-14 13:55 – 2020-05-21 19:48 – 000000000 ___HD C:UsersPublicDocumentsAdobeGCData
2021-07-14 13:17 – 2020-12-09 19:18 – 000000000 ____D C:Userscrepe9userAppDataRoamingAnki2
2021-07-14 13:16 – 2021-06-09 22:50 – 000000000 ____D C:Userscrepe9userAppDataRoamingStellarium
2021-07-14 13:16 – 2020-05-23 13:02 – 000000600 _____ C:Userscrepe9userAppDataRoamingwinscp.rnd
2021-07-14 13:16 – 2019-10-24 00:18 – 000000100 _____ C:Userscrepe9userAppDatadefault.pls
2021-07-14 13:14 – 2021-04-07 11:45 – 000000000 ____D C:Userscrepe9userAppDataRoamingSignal
2021-07-14 13:12 – 2021-06-09 22:50 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsStellarium
2021-07-14 13:12 – 2021-05-21 13:32 – 000000000 ____D C:WINDOWSpss
2021-07-14 13:12 – 2021-02-18 19:42 – 000000000 ____D C:Userscrepe9userAppDataRoamingRainmeter
2021-07-14 13:12 – 2021-01-16 22:46 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPython 2.7
2021-07-14 13:12 – 2021-01-13 02:16 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFontForge
2021-07-14 13:12 – 2021-01-02 02:51 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFlip PDF Corporate Edition
2021-07-14 13:12 – 2021-01-01 00:37 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFlip PDF Professional
2021-07-14 13:12 – 2020-12-31 13:35 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFlip Reader
2021-07-14 13:12 – 2020-12-30 05:49 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFlipCreator
2021-07-14 13:12 – 2020-12-30 05:43 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuPrograms3D PageFlip Standard
2021-07-14 13:12 – 2020-12-30 05:30 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFlip Book Photobooth
2021-07-14 13:12 – 2020-12-30 02:59 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFlippingBook
2021-07-14 13:12 – 2020-12-30 02:36 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPUB HTML5
2021-07-14 13:12 – 2020-12-30 02:15 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPDF to Flipbook 3D
2021-07-14 13:12 – 2020-12-29 22:51 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFlip PDF
2021-07-14 13:12 – 2020-12-29 18:14 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsFlip Book Maker for PDF
2021-07-14 13:12 – 2020-12-29 13:52 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuPrograms1stFlip FlipBook Creator
2021-07-14 13:12 – 2020-12-05 22:11 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsJava
2021-07-14 13:12 – 2020-11-29 01:23 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAvira
2021-07-14 13:12 – 2020-09-08 01:51 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsTexmaker
2021-07-14 13:12 – 2020-08-29 23:52 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsGhostscript
2021-07-14 13:12 – 2020-08-29 23:42 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsScribus 1.4.8
2021-07-14 13:12 – 2020-08-29 12:56 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Windows Logo
2021-07-14 13:12 – 2020-06-01 16:38 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAgent Ransack
2021-07-14 13:12 – 2020-05-28 00:00 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsEPSON
2021-07-14 13:12 – 2020-05-25 13:15 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramscalibre – E-book Management
2021-07-14 13:12 – 2020-05-25 02:15 – 000000000 ____D C:Userscrepe9userAppDataRoamingaudacity
2021-07-14 13:12 – 2020-05-25 01:53 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsget_iplayer
2021-07-14 13:12 – 2020-05-24 23:34 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsEpson Software
2021-07-14 13:12 – 2020-05-23 13:01 – 000000000 ____D C:Program FileswinSCP
2021-07-14 13:12 – 2020-05-22 19:48 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuPrograms7-Zip
2021-07-14 13:12 – 2020-05-21 17:41 – 000000000 ____D C:Program Files (x86)Telegram
2021-07-14 13:12 – 2020-05-21 17:06 – 000000000 ____D C:Userscrepe9userAppDataRoamingViberPC
2021-07-14 13:12 – 2020-05-20 22:57 – 000000000 ____D C:UsersPublicSecurity Sessions
2021-07-14 13:12 – 2019-10-25 02:10 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPDFCreator
2021-07-14 13:12 – 2019-10-25 02:02 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsSamsung Printers
2021-07-14 13:12 – 2019-10-25 02:02 – 000000000 ____D C:ProgramDataSamsung
2021-07-14 13:12 – 2019-10-24 02:57 – 000000000 ____D C:Userscrepe9userAppDataRoamingvlc
2021-07-14 13:12 – 2019-10-24 02:56 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsVideoLAN
2021-07-14 13:12 – 2019-10-24 02:00 – 000000000 ____D C:WINDOWSSHELLNEW
2021-07-14 13:12 – 2019-10-24 02:00 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Office
2021-07-14 13:12 – 2019-10-24 00:16 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNero 7 Ultra Edition
2021-07-14 13:12 – 2019-10-23 23:53 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsCCleaner
2021-07-14 13:12 – 2019-10-23 16:51 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPDF-XChange PDF Viewer
2021-07-14 13:12 – 2019-10-22 17:08 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsIntel
2021-07-14 13:12 – 2019-10-22 17:04 – 000000000 ___HD C:WINDOWSsystem32WLANProfiles
2021-07-14 13:12 – 2019-10-22 17:03 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsIntel PROSet Wireless
2021-07-14 13:12 – 2019-10-22 02:14 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsWolfram Mathematica 12
2021-07-14 13:12 – 2019-10-22 01:54 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsLibreOffice 6.3
2021-07-14 13:12 – 2019-10-22 00:47 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsComodo
2021-07-14 13:12 – 2019-10-21 23:37 – 000000000 ____D C:UsersPublicSpeedup Sessions
2021-07-14 13:12 – 2019-10-21 23:37 – 000000000 ____D C:Userscrepe9userAppDataLocalAvira
2021-07-14 13:12 – 2019-10-21 20:36 – 000000000 ___HD C:Program FilesWindowsApps
2021-07-14 13:12 – 2019-10-21 20:36 – 000000000 ____D C:WINDOWSsystem32WinBioPlugIns
2021-07-14 13:12 – 2019-10-21 20:36 – 000000000 ____D C:WINDOWSsystem32Sysprep
2021-07-14 13:12 – 2019-10-21 20:21 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsOpen-Shell
2021-07-14 13:12 – 2019-10-21 19:57 – 000000000 ____D C:ProgramDataMicrosoft OneDrive
2021-07-14 13:12 – 2019-10-21 19:55 – 000000000 __RHD C:UsersPublicAccountPictures
2021-07-14 13:11 – 2019-10-24 02:00 – 000000000 ____D C:Program Files (x86)Microsoft Office
2021-07-14 13:11 – 2019-10-21 23:33 – 000000000 ____D C:ProgramDataPackage Cache
2021-07-14 13:11 – 2019-10-21 23:33 – 000000000 ____D C:Program Files (x86)Avira
2021-07-14 13:11 – 2019-10-21 20:36 – 000000000 ____D C:WINDOWSregistration
2021-07-14 13:11 – 2019-10-21 20:36 – 000000000 ____D C:WINDOWSappcompat
2021-07-14 13:09 – 2020-05-21 17:43 – 000000000 ____D C:Userscrepe9userAppDataRoamingTelegram Desktop
2021-07-14 13:08 – 2019-10-22 01:47 – 000000000 ____D C:Userscrepe9userAppDataRoamingWhatsApp
2021-07-14 13:01 – 2019-10-22 01:47 – 000000000 ____D C:Userscrepe9userAppDataRoamingMicrosoftWindowsStart MenuProgramsWhatsApp
2021-07-14 13:01 – 2019-10-22 01:47 – 000000000 ____D C:Userscrepe9userAppDataLocalSquirrelTemp
2021-07-14 12:45 – 2019-10-21 23:57 – 000208336 _____ (Avira Operations GmbH & Co. KG) C:WINDOWSsystem32Driversavgntflt.sys
2021-07-14 12:45 – 2019-10-21 23:57 – 000022848 _____ (Avira Operations GmbH & Co. KG) C:WINDOWSsystem32Driversavelam.sys
2021-07-14 12:37 – 2019-10-21 20:35 – 000000000 ____D C:WINDOWSINF
2021-07-14 12:37 – 2019-10-21 19:56 – 000843136 _____ C:WINDOWSsystem32PerfStringBackup.INI
2021-07-14 12:34 – 2019-10-21 20:36 – 000000000 ____D C:WINDOWSAppReadiness
2021-07-14 12:33 – 2020-05-22 00:23 – 000000000 ____D C:ProgramDataAVAST Software
2021-07-14 12:32 – 2020-05-22 00:34 – 000002105 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAvast Free Antivirus.lnk
2021-07-14 12:32 – 2019-10-21 20:32 – 000524288 _____ C:WINDOWSsystem32configBBI
2021-07-14 12:32 – 2019-10-21 19:55 – 000000000 __SHD C:Userscrepe9userIntelGraphicsProfiles
2021-07-14 12:32 – 2019-10-21 19:49 – 000000006 ____H C:WINDOWSTasksSA.DAT
2021-07-14 12:32 – 2019-10-21 19:49 – 000000000 ____D C:Intel
2021-07-14 12:25 – 2019-10-21 19:49 – 000000000 ____D C:WINDOWSsystem32Driverswd
2021-07-14 12:19 – 2019-10-21 20:25 – 000000000 ____D C:Userscrepe9userAppDataLocalOpenShell
2021-07-14 12:16 – 2020-05-22 15:11 – 000000000 ____D C:Program Files (x86)Mozilla Firefox
2021-07-14 12:16 – 2019-10-21 21:23 – 000001249 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk
2021-07-14 12:13 – 2020-05-22 00:31 – 000003990 _____ C:WINDOWSsystem32TasksAvast Emergency Update
2021-07-14 12:13 – 2019-10-21 23:33 – 000000000 ____D C:ProgramDataAvira
2021-07-14 12:13 – 2019-10-21 20:36 – 000000000 ___HD C:WINDOWSELAMBKUP
2021-07-14 12:13 – 2019-10-21 19:54 – 000000000 ____D C:Userscrepe9user
2021-07-13 23:24 – 2019-10-21 20:45 – 000000000 ____D C:Userscrepe9userAppDataLocalD3DSCache
2021-07-13 22:46 – 2019-10-21 19:55 – 000000000 ____D C:Userscrepe9userAppDataLocalPackages
2021-07-13 14:22 – 2019-10-24 00:15 – 000000000 ____D C:Userscrepe9userAppDataRoamingAhead
2021-07-12 11:43 – 2020-05-25 02:07 – 000000000 ____D C:Userscrepe9userAppDataRoamingMPC-HC
2021-07-11 23:10 – 2019-10-22 01:01 – 000000000 ____D C:Userscrepe9userAppDataLocalCrashDumps
2021-07-09 09:15 – 2021-05-30 00:58 – 000000000 ____D C:Userscrepe9userAppDataLocalAvast Software
2021-07-08 20:39 – 2019-10-21 19:58 – 000000000 ____D C:Userscrepe9userAppDataLocalPlaceholderTileLogoFolder
2021-07-04 13:35 – 2021-06-04 10:14 – 000001662 _____ C:Userscrepe9userDesktop!!PROJECT JUL 2021.lnk
2021-07-04 11:24 – 2019-10-23 23:53 – 000004210 _____ C:WINDOWSsystem32TasksCCleaner Update
2021-07-01 20:50 – 2019-10-22 00:47 – 000000000 ____D C:Program Files (x86)Comodo
2021-06-26 00:59 – 2020-09-07 21:04 – 000000000 ____D C:Userscrepe9userAppDataLocalgtk-2.0
2021-06-26 00:59 – 2020-09-07 21:02 – 000000000 ____D C:Userscrepe9userAppDataLocalbabl-0.1
2021-06-25 19:41 – 2020-06-10 01:23 – 000000000 ____D C:Userscrepe9userAppDataLocalElevatedDiagnostics
2021-06-25 17:18 – 2020-10-14 20:31 – 000182600 _____ (AVAST Software) C:WINDOWSsystem32DriversaswMonFlt.sys
2021-06-25 17:18 – 2020-07-10 05:19 – 000366616 _____ (AVAST Software) C:WINDOWSsystem32Driversaswbidsdriver.sys
2021-06-25 17:18 – 2020-07-10 05:19 – 000250392 _____ (AVAST Software) C:WINDOWSsystem32Driversaswbidsh.sys
2021-06-25 17:18 – 2020-07-10 05:19 – 000099352 _____ (AVAST Software) C:WINDOWSsystem32Driversaswbuniv.sys
2021-06-25 17:18 – 2020-05-22 00:30 – 000851192 _____ (AVAST Software) C:WINDOWSsystem32DriversaswSnx.sys
2021-06-25 17:18 – 2020-05-22 00:30 – 000471920 _____ (AVAST Software) C:WINDOWSsystem32DriversaswSP.sys
2021-06-25 17:18 – 2020-05-22 00:30 – 000327536 _____ (AVAST Software) C:WINDOWSsystem32DriversaswVmm.sys
2021-06-25 17:18 – 2020-05-22 00:30 – 000216928 _____ (AVAST Software) C:WINDOWSsystem32DriversaswArPot.sys
2021-06-25 17:18 – 2020-05-22 00:30 – 000107848 _____ (AVAST Software) C:WINDOWSsystem32DriversaswRdr2.sys
2021-06-25 17:18 – 2020-05-22 00:30 – 000082912 _____ (AVAST Software) C:WINDOWSsystem32DriversaswRvrt.sys
2021-06-25 17:18 – 2020-05-22 00:30 – 000041352 _____ (AVAST Software) C:WINDOWSsystem32DriversaswKbd.sys
2021-06-25 17:18 – 2020-05-22 00:30 – 000035720 _____ (AVAST Software) C:WINDOWSsystem32DriversaswArDisk.sys
2021-06-22 14:51 – 2020-05-20 22:52 – 000003698 _____ C:WINDOWSsystem32TasksAvira_Security_Update
2021-06-20 00:42 – 2019-10-21 23:29 – 000000000 ____D C:Userscrepe9userDocumentsVuze Downloads

==================== Files in the root of some directories ========

2020-05-23 13:02 – 2021-07-14 13:16 – 000000600 _____ () C:Userscrepe9userAppDataRoamingwinscp.rnd
2021-01-01 16:03 – 2021-01-01 16:03 – 000003584 _____ () C:Userscrepe9userAppDataLocalDCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-05-22 00:26 – 2020-05-22 00:26 – 000000000 _____ () C:Userscrepe9userAppDataLocaloobelibMkey.log
2021-06-26 00:59 – 2021-06-26 00:59 – 000004709 _____ () C:Userscrepe9userAppDataLocalrecently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

 

 

******************************

 

Addition.txt

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-07-2021
Ran by crepe9user (14-07-2021 14:47:18)
Running from C:Userscrepe9userDesktop
Windows 10 Pro Version 1903 18362.1256 (X64) (2019-10-21 18:51:17)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3899059483-3202621829-1806181359-500 – Administrator – Disabled)
crepe9user (S-1-5-21-3899059483-3202621829-1806181359-1001 – Administrator – Enabled) => C:Userscrepe9user
DefaultAccount (S-1-5-21-3899059483-3202621829-1806181359-503 – Limited – Disabled)
Guest (S-1-5-21-3899059483-3202621829-1806181359-501 – Limited – Disabled)
WDAGUtilityAccount (S-1-5-21-3899059483-3202621829-1806181359-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled – Up to date) {8A154ED8-4428-DB2D-0E3F-BD82C448FD94}
AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Disabled) {3D9428CB-50D2-A37E-F90F-1D238F042427}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3D PageFlip Standard (HKLM-x32…3D PageFlip Standard_is1) (Version:  – 3DPageFlip Solution)
7+ Taskbar Tweaker v5.8 (HKUS-1-5-21-3899059483-3202621829-1806181359-1001…7 Taskbar Tweaker) (Version: 5.8 – RaMMicHaeL)
7-Zip 20.00 alpha (x64) (HKLM…7-Zip) (Version: 20.00 alpha – Igor Pavlov)
A73 Piano Station (HKLM-x32…A73 Piano Station) (Version:  – )
Adobe Acrobat DC (HKLM-x32…{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.010.20098 – Adobe Systems Incorporated)
Adobe After Effects CC 2019 (HKLM-x32…AEFT_16_0_1) (Version: 16.0.1 – Adobe Systems Incorporated)
Adobe Animate CC 2019 (HKLM-x32…FLPR_19_1) (Version: 19.1 – Adobe Systems Incorporated)
Adobe Audition CC 2019 (HKLM-x32…AUDT_12_0_1) (Version: 12.0.1 – Adobe Systems Incorporated)
Adobe Bridge CC 2019 (HKLM-x32…KBRG_9_0_2) (Version: 9.0.2 – Adobe Systems Incorporated)
Adobe Character Animator CC 2019 (HKLM-x32…CHAR_2_0_1) (Version: 2.0.1 – Adobe Systems Incorporated)
Adobe Dimension CC (HKLM-x32…ESHR_2_1) (Version: 2.1 – Adobe Systems Incorporated)
Adobe Dreamweaver CC 2019 (HKLM-x32…DRWV_19_0) (Version: 19.0 – Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32…Adobe Flash Player NPAPI) (Version: 32.0.0.433 – Adobe)
Adobe Genuine Service (HKLM-x32…AdobeGenuineService) (Version:  – Adobe)
Adobe Illustrator CC 2019 (HKLM-x32…ILST_23_0_1) (Version: 23.0.1 – Adobe Systems Incorporated)
Adobe InCopy CC 2019 (HKLM-x32…AICY_14_0) (Version: 14.0 – Adobe Systems Incorporated)
Adobe InDesign CC 2019 (HKLM-x32…IDSN_14_0_1) (Version: 14.0.1 – Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32…LTRM_8_1) (Version: 8.1 – Adobe Systems Incorporated)
Adobe Media Encoder CC 2019 (HKLM-x32…AME_13_0_2) (Version: 13.0.2 – Adobe Systems Incorporated)
Adobe Muse CC 2018 (HKLM-x32…MUSE_2018_1_0) (Version: 2018.1.0.266 – Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32…PHSP_20_0_1) (Version: 20.0.1 – Adobe Systems Incorporated)
Adobe Prelude CC 2019 (HKLM-x32…PRLD_8_0_1) (Version: 8.0.1 – Adobe Systems Incorporated)
Adobe Premiere Pro CC 2019 (HKLM-x32…PPRO_13_0_2) (Version: 13.0.2 – Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32…{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 – Adobe Systems Incorporated)
Agent Ransack x64 (HKLM…{FD8C1365-2229-4F37-A126-558DB2471CBE}) (Version: 7.0.828.1 – Mythicsoft Ltd)
Anki (HKLM-x32…Anki) (Version: 2.1.35 – )
Audacity 2.4.1 (HKLM-x32…Audacity_is1) (Version: 2.4.1 – Audacity Team)
Avast Free Antivirus (HKLM-x32…Avast Antivirus) (Version: 21.5.2470 – Avast Software)
Avira (HKLM-x32…{21098ed5-59e9-4203-b79e-63f3c373e022}) (Version: 1.2.155.4877 – Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32…{2CA8B2E7-B4B7-4553-83E6-448A543EA5AD}) (Version: 1.2.155.4877 – Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32…Avira Antivirus) (Version: 15.0.2107.2107 – Avira Operations GmbH & Co. KG) Hidden
Avira Phantom VPN (HKLM-x32…Avira Phantom VPN) (Version: 2.37.5.25855 – Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32…Avira Security_is1) (Version: 1.1.50.19847 – Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32…AviraSecurityUninstaller) (Version:  – Avira Operations GmbH & Co. KG;)
Avira Software Updater (HKLM-x32…{5FFF909D-D88F-42B9-9A85-328A1290611C}) (Version: 2.0.6.48309 – Avira Operations GmbH & Co. KG) Hidden
Avira System Speedup (HKLM-x32…Avira System Speedup_is1) (Version: 6.11.0.11177 – Avira Operations GmbH & Co. KG) Hidden
Birdfont (HKLM-x32…Birdfont) (Version:  – )
calibre (HKLM-x32…{260CE6D4-9FB5-47CB-8425-BEE666F40FC0}) (Version: 1.7.0 – Kovid Goyal)
CCleaner (HKLM…CCleaner) (Version: 5.72 – Piriform)
Common Desktop Agent (HKLM…{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 – OEM) Hidden
Comodo Dragon (HKLM-x32…Comodo Dragon) (Version:  90.0.4430.212 – Comodo)
COMODO Firewall (HKLM…{567591EE-85F7-4E4D-AE28-FD65FCF4F201}) (Version: 12.1.0.6914 – COMODO Security Solutions Inc.) Hidden
COMODO Firewall (HKLM…COMODO Internet Security) (Version: 12.1.0.6914 – COMODO Security Solutions Inc.)
ControlCenter2.0 v1.0.53 (HKLM-x32…{2F385B5D-5F23-4513-B3CE-9F5E4F4B882A}) (Version: 1.0.53 – Control Center)
Cryptophane 0.7.0 (HKLM-x32…Cryptophane_is1) (Version: 0.7.0 – eCOSM)
DVD Shrink 3.2 (HKLM-x32…DVD Shrink_is1) (Version:  – DVD Shrink)
Easy Photo Scan (HKLM-x32…{2A85E1E9-3F89-4972-A3B2-A209D8DEECE1}) (Version: 1.00.0008 – Seiko Epson Corporation)
EditPad Lite 8 v.8.1.1 (HKLM…EditPad Lite 8) (Version: v.8.1.1 – Just Great Software)
EPSON Scan (HKLM-x32…EPSON Scanner) (Version:  – Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32…{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 – SEIKO EPSON Corp.)
FFmpeg (Windows) for Audacity version 2.2.2 (HKLM-x32…{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 – )
Flip Reader (HKLM-x32…Flip Reader_is1) (Version:  – FlipBuilder Solution)
FlipCreator (version 5.1.0.2) (HKLM-x32…FlipCreator_is1) (Version:  – Alive Software, Inc.)
FlippingBook Publisher (HKLM-x32…{ACBF783A-DDB7-496C-B9CA-2F34DAD4933F}) (Version: 2021.1.2 – FlippingBook) Hidden
FlippingBook Publisher Trial (HKLM-x32…FlippingBook Publisher Trial) (Version: 2021.1.2 – FlippingBook)
FontForge version 07-11-2020 (HKLM-x32…{56748B9C-19AE-4689-B8C5-5A45AE0A993A}_is1) (Version: 07-11-2020 – FontForgeBuilds)
Freemake Video Converter version 4.1.13 (HKLM-x32…Freemake Video Converter_is1) (Version: 4.1.13 – Mixbyte Inc.)
get_iplayer 3.25.0 (HKLM-x32…get_iplayer_is1) (Version: 3.25.0 – The get_iplayer Contributors)
GIMP 2.10.20 (HKLM…GIMP-2_is1) (Version: 2.10.20 – The GIMP Team)
Glyphr Studio 0.5.6 (HKUS-1-5-21-3899059483-3202621829-1806181359-1001…6f97162b-947c-5cd5-aae2-d87a2dcc3c0d) (Version: 0.5.6 – Glyphr Studio team)
GNU Privacy Guard (HKLM-x32…GnuPG) (Version: 2.2.27 – The GnuPG Project)
GoAnywhere OpenPGP Studio (HKLM-x32…