Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-11-2022 Ran by fcp (administrator) on LAPTOP-3OT9TL6O (HP HP Laptop 17-by3xxx) (17-11-2022 19:47:07) Running from C:\Users\fcp Loaded Profiles: fcp Platform: Microsoft Windows 10 Home Version 21H2 19044.2251 (X64) Language: English (United States) Default browser: Edge Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (DriverStore\FileRepository\cui_dch.inf_amd64_9ea30e7f88626f47\igfxCUIServiceN.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9ea30e7f88626f47\igfxEMN.exe (DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\BridgeCommunication.exe (ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_e3868713e3d137ef\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9ea30e7f88626f47\igfxCUIServiceN.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_caa7639078e34732\OneApp.IGCC.WinService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6ce565ec54103c62\IntelCpHDCPSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe <2> (services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\IAS\IntelAudioService.exe (services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <15> (svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\ad2f1837.hpjumpstarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.211.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe [1201968 2020-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [212184 2022-10-22] (Avast Software s.r.o. -> AVAST Software) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-4093771387-2409105371-3931295374-1002\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [536152 2022-08-15] (HP Inc. -> HP Inc.) HKU\S-1-5-21-4093771387-2409105371-3931295374-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38650192 2022-11-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-10] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {1AB01DFE-FD05-4C56-832A-2C5CAFB33FD3} - System32\Tasks\CCleanerSkipUAC - fcp => C:\Program Files\CCleaner\CCleaner.exe [32325456 2022-11-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {23243B53-EBB2-418A-8DF0-6031E233E739} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-08-04] (Google Inc -> Google LLC) Task: {331E5648-4300-4A09-B52E-21D68797E430} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-08-04] (Avast Software s.r.o. -> Avast Software) Task: {4213F18B-6BB7-4233-B33C-660D76B6A4B6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-17] (Microsoft Corporation -> Microsoft Corporation) Task: {6FCDE3EF-5758-4ED3-A6DE-3B1CA337149D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (No File) Task: {7037B993-D872-4EB1-95E8-E19EC5E52E8D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-17] (Microsoft Corporation -> Microsoft Corporation) Task: {82EC9190-125E-46C1-BFDD-B01DE2ED3A33} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice Task: {BE86E45C-B06F-4E3E-AF6C-22A699C75EDB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-17] (Microsoft Corporation -> Microsoft Corporation) Task: {C6B7810E-B3F9-4A7F-8348-CA77FCDF49E7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (No File) Task: {C748FD1F-9D92-4367-A37B-FBE5ABF62942} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-17] (Microsoft Corporation -> Microsoft Corporation) Task: {DA97F10B-89EA-497A-B21F-7A11383BFD3B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-11-09] (Piriform Software Ltd -> Piriform) Task: {E16D3E81-7594-4D9B-9940-38AE74925735} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4936920 2022-10-22] (Avast Software s.r.o. -> AVAST Software) Task: {E36BBD18-8098-471D-9C7F-728103ED1E6D} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [66936 2022-11-03] (Microsoft Corporation -> Microsoft Corporation) Task: {F0D2A738-C907-4DC2-AB81-934826132161} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-11-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "5d010021-1f13-489a-8cb5-7a9b8510c7cf" --version "6.06.10144" --silent Task: {F1AD3C58-1453-4E52-873A-C837672E7E40} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-08-04] (Google Inc -> Google LLC) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{132bf822-3b20-409b-89d9-47d55c74bf88}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\fcp\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-17] Edge Extension: (Avast Online Security & Privacy) - C:\Users\fcp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-11-16] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\fcp\AppData\Local\Google\Chrome\User Data\Default [2022-11-17] CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR Extension: (Google Docs Offline) - C:\Users\fcp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-23] CHR Extension: (Chrome Web Store Payments) - C:\Users\fcp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-04] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8539032 2022-11-14] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [592600 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [592600 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-08-04] (Avast Software s.r.o. -> AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12515768 2022-11-17] (Microsoft Corporation -> Microsoft Corporation) S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [785408 2022-11-09] (Microsoft Windows -> Microsoft Corporation) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe [786888 2022-09-28] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe [785896 2022-09-28] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe [782296 2022-09-28] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe [786392 2022-09-28] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe [493680 2022-09-28] (HP Inc. -> HP Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-08-04] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-08-04] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [127936 2019-05-13] (Alcorlink Corp. -> ) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [42304 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [238152 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [382504 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [306128 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [105936 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [48512 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276520 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [564304 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [114464 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [90008 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [862936 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [672272 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221944 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327896 2022-10-22] (Avast Software s.r.o. -> AVAST Software) R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.) R3 iaLPSS2_GPIO2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation) R3 IntcBTAu; C:\WINDOWS\System32\DriverStore\FileRepository\intcbtau.inf_amd64_0d2e7834c92ff8a0\IntcBTAu.sys [725384 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-08-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-08-04] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-08-04] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2022-11-17 19:47 - 2022-11-17 19:47 - 000018268 _____ C:\Users\fcp\FRST.txt 2022-11-12 09:22 - 2022-11-14 12:12 - 000000000 ____D C:\Users\fcp\AppData\Local\CrashDumps 2022-11-09 15:17 - 2022-11-09 15:17 - 000688128 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-11-09 15:17 - 2022-11-09 15:17 - 000073216 _____ C:\WINDOWS\system32\nettraceex.dll 2022-11-09 15:17 - 2022-11-09 15:17 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-11-09 15:16 - 2022-11-09 15:16 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-11-09 15:11 - 2022-11-09 15:11 - 000000000 ___HD C:\$WinREAgent 2022-11-04 12:28 - 2022-11-04 12:28 - 000390145 _____ C:\Users\fcp\Downloads\Resized_20221104_124936_438.jpeg 2022-10-30 00:09 - 2022-10-30 00:10 - 000000000 ____D C:\Users\fcp\Downloads\Cfish-12.2 2022-10-29 23:57 - 2022-10-29 23:57 - 012175764 _____ C:\Users\fcp\Downloads\Cfish-12.2.zip 2022-10-22 03:07 - 2022-10-22 03:07 - 000270552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2022-10-22 03:07 - 2022-10-22 03:07 - 000221944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2022-11-17 19:47 - 2022-08-04 09:44 - 000000000 ____D C:\Users\fcp 2022-11-17 19:47 - 2022-07-07 17:26 - 000000000 ____D C:\FRST 2022-11-17 19:46 - 2022-07-17 19:58 - 000000000 ____D C:\Users\fcp\FRST-OlderVersion 2022-11-17 19:46 - 2022-07-09 08:49 - 002375168 _____ (Farbar) C:\Users\fcp\FRST64.exe 2022-11-17 19:24 - 2022-08-04 14:49 - 000000000 ____D C:\Program Files (x86)\Google 2022-11-17 19:17 - 2022-08-04 12:28 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-11-17 18:53 - 2022-08-04 12:27 - 000000000 ____D C:\WINDOWS\INF 2022-11-17 18:53 - 2022-08-04 09:53 - 000795738 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-17 18:48 - 2022-08-04 15:23 - 000000000 ____D C:\Program Files\CCleaner 2022-11-17 12:07 - 2022-08-04 14:45 - 000000000 ____D C:\ProgramData\Avast Software 2022-11-17 12:07 - 2022-08-04 12:28 - 000000000 ____D C:\WINDOWS\ServiceState 2022-11-17 12:07 - 2022-08-04 12:24 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-11-17 12:07 - 2022-08-04 09:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-17 12:07 - 2022-01-15 02:07 - 000000000 __SHD C:\Users\fcp\IntelGraphicsProfiles 2022-11-17 12:07 - 2022-01-14 03:01 - 000008192 ___SH C:\DumpStack.log.tmp 2022-11-17 12:07 - 2020-05-09 19:28 - 000000000 ____D C:\Intel 2022-11-17 11:41 - 2022-08-04 09:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-11-17 11:21 - 2020-03-13 07:41 - 000000000 ____D C:\Program Files\Microsoft Office 2022-11-16 17:06 - 2022-08-04 15:23 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-11-16 17:06 - 2022-08-04 14:47 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-11-16 17:03 - 2022-09-21 04:12 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2022-11-16 17:01 - 2022-09-21 04:12 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2022-11-16 15:18 - 2022-01-15 06:40 - 000003236 _____ C:\Users\fcp\Documents\ChessT_usernames.txt 2022-11-16 14:46 - 2022-08-04 14:51 - 000004164 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E1BCA668-A3A6-46F9-8F98-9C911FF0622A} 2022-11-16 09:50 - 2022-01-15 06:40 - 000067734 _____ C:\Users\fcp\Documents\ljs.txt 2022-11-16 07:06 - 2022-08-04 12:28 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-16 07:06 - 2022-08-04 12:28 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-16 06:28 - 2022-02-17 17:48 - 000000000 ____D C:\Users\fcp\Documents\x86III 2022-11-16 06:02 - 2022-08-05 12:25 - 000000000 ____D C:\Program Files (x86)\Arena 2022-11-15 10:30 - 2022-08-04 12:25 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-14 19:13 - 2022-08-05 09:59 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4093771387-2409105371-3931295374-1002 2022-11-14 19:13 - 2022-08-04 09:58 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4093771387-2409105371-3931295374-1002 2022-11-14 19:13 - 2022-08-04 09:44 - 000002384 _____ C:\Users\fcp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-11-14 16:29 - 2022-08-04 14:47 - 000382504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2022-11-12 07:25 - 2021-04-13 04:09 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-11-12 07:25 - 2021-04-13 04:09 - 000002283 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-11-10 15:24 - 2022-08-04 14:49 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-11-10 15:24 - 2022-08-04 14:49 - 000002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-11-10 10:38 - 2022-08-04 09:15 - 000001966 _____ C:\Users\fcp\Documents\08.04.22reset.txt 2022-11-10 03:19 - 2022-08-04 09:38 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-11-10 03:19 - 2022-08-04 09:38 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-11-09 22:28 - 2022-08-04 09:37 - 000466496 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-09 22:27 - 2022-08-04 12:28 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-11-09 22:27 - 2022-08-04 12:28 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-11-09 22:27 - 2022-08-04 12:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-11-09 22:27 - 2022-08-04 12:28 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-09 22:27 - 2022-08-04 12:28 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-11-09 22:27 - 2022-08-04 12:28 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-11-09 22:27 - 2022-08-04 12:28 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-09 15:07 - 2022-08-12 17:43 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-09 15:06 - 2022-08-12 17:43 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-11-08 05:30 - 2022-08-04 15:23 - 000002250 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - fcp 2022-11-08 05:30 - 2022-08-04 14:49 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-11-08 05:30 - 2022-08-04 14:49 - 000003124 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-11-08 05:30 - 2022-08-04 14:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2022-10-22 03:07 - 2022-08-04 14:47 - 000862936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000672272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000564304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000327896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000306128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000276520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000238152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000114464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000105936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000090008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000048512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2022-10-22 03:07 - 2022-08-04 14:47 - 000042304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2022-10-22 03:07 - 2022-08-04 12:28 - 000000000 ___HD C:\WINDOWS\ELAMBKUP ==================== Files in the root of some directories ======== 2022-07-09 08:49 - 2022-11-17 19:46 - 002375168 _____ (Farbar) C:\Users\fcp\FRST64.exe ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================