Topic: Mcafee
View Single Post
  #15  
Old October 21st, 2021, 09:25 PM
littleone littleone is offline
Senior Member
 
Join Date: Aug 2017
Posts: 162
1st

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-10-2021
Ran by Debbie (administrator) on DESKTOP-ELI7VR8 (Dell Inc. OptiPlex 790) (21-10-2021 15:01:08)
Running from C:\Users\Debbie\Downloads
Loaded Profiles: Debbie
Platform: Microsoft Windows 10 Home Version 21H1 19043.1288 (X64) Language: English (United States)
Default browser: IE
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe <2>
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <2>
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Inc. -> Adobe) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\RemoteComponents\UPI\ExManCoreLib\AdobeExte nsionsService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4. 0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_ x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0 _x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <6>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(Corel Corporation -> WinZip Computing, S.L.) C:\Program Files\WinZip\FAHWindow64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <32>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler. exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler6 4.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee Security Scan\3.11.2296\SSScheduler.exe
(McAfee, LLC -> McAfee, LLC.) C:\Program Files (x86)\McAfee\McAfee Safe Connect\SafeConnect.ServiceHost.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6 305.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsa pps_16005.14326.20520.0_x64__8wekyb3d8bbwe\HxOutlo ok.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsa pps_16005.14326.20520.0_x64__8wekyb3d8bbwe\HxTsr.e xe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.100 1.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.ex e
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRu ntime.exe
(OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YARNPAE. EXE
(Wavesor Software -> Wavesor Software) C:\Users\Debbie\Wavesor Software\SWUpdater\1.3.109.0\SWUpdaterCrashHandler .exe
(Wavesor Software -> Wavesor Software) C:\Users\Debbie\Wavesor Software\SWUpdater\1.3.109.0\SWUpdaterCrashHandler 64.exe
(Wavesor Software -> Wavesor Software) C:\Users\Debbie\Wavesor Software\WaveBrowser\wavebrowser.exe <10>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [134936 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3952096 2020-03-11] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-25] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436704 2020-09-25] (Corel Corporation -> WinZip Computing, S.L.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.e xe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5267168 2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2021-10-06] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-3358373597-1690568811-3966139131-1001\...\Run: [EPSDNMON] => ""
HKU\S-1-5-21-3358373597-1690568811-3966139131-1001\...\Run: [Wavesor SWUpdater] => C:\Users\Debbie\Wavesor Software\SWUpdater\1.3.109.0\SWUpdaterCore.exe [210064 2021-08-23] (Wavesor Software -> Wavesor Software)
HKU\S-1-5-21-3358373597-1690568811-3966139131-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5397216 2021-10-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3358373597-1690568811-3966139131-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5397216 2021-10-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3358373597-1690568811-3966139131-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe [2766064 2021-10-06] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-3358373597-1690568811-3966139131-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Debbie\AppData\Local\Microsoft\OneDrive\ Update\OneDriveSetup.exe"
HKU\S-1-5-21-3358373597-1690568811-3966139131-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Debbie\AppData\Local\Microsoft\OneDrive\ StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-3358373597-1690568811-3966139131-1001\...\RunOnce: [Uninstall 21.180.0905.0007] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Debbie\AppData\Local\Microsoft\OneDrive\ 21.180.0905.0007"
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65160 2021-06-27] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\EPSON XP-430 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBPAE.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Insta ller\chrmstp.exe [2021-10-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2021-09-14]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.2296\SSScheduler.exe (McAfee, LLC -> McAfee, LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2021-04-06]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00C3A446-5C9F-4B64-8C4B-8A74992976FB} - System32\Tasks\EPSON XP-430 Series Update {4096E76B-F21C-4D1E-96D3-5B18C92C0122} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPAE.E XE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {11BC88AB-253F-463C-9839-BFC664239DAA} - System32\Tasks\WavesorSWUpdaterTaskUserS-1-5-21-3358373597-1690568811-3966139131-1001Core => C:\Users\Debbie\Wavesor Software\SWUpdater\SWUpdater.exe [107608 2021-04-06] (Wavesor Software -> Wavesor Software)
Task: {14F842F3-E167-40CF-9A23-6CBFAF7C3EDA} - System32\Tasks\WavesorSWUpdaterTaskUserS-1-5-21-3358373597-1690568811-3966139131-1001UA => C:\Users\Debbie\Wavesor Software\SWUpdater\SWUpdater.exe [107608 2021-04-06] (Wavesor Software -> Wavesor Software)
Task: {22F11743-5FE8-4611-A5C2-12B8F6F58F38} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-25] (Corel Corporation -> Corel Corporation)
Task: {27A0CE13-F160-45C2-95CD-5E94CAAF909E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-12] (Google Inc -> Google LLC)
Task: {2D0E9BC2-E25F-4440-AEB5-8D2C78D06A25} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {49281A4F-475D-43B9-803B-4EA453285A8D} - System32\Tasks\Quick Driver Updater skipuac => C:\Program Files\Quick Driver Updater\qdu.exe [4183136 2020-05-11] (DIGITAL PROTECTION SERVICES S.R.L. -> Digital Protection Services S.R.L)
Task: {4B238893-8C9F-4EE3-8ED0-1D15A0A6FEF9} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-25] (Corel Corporation -> Corel Corporation)
Task: {52DF8A8D-DAD3-4131-B6E8-F8D220C9AB2A} - System32\Tasks\BA Scheduler => powershell.exe -WindowStyle Hidden -ExecutionPolicy bypass -c "$env:COMPLUS_version='v4.0.30319';&powershell{$w= "$env:APPDATA"+'\Browser Assistant\';[Reflection.Assembly]::Load([System.IO.File]::ReadAllBytes($w+'Updater.dll'));$i=new-object u.U;$i.ST()}" <==== ATTENTION
Task: {5BE3E93F-D035-437F-A554-BE93865CE7B9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-12] (Google Inc -> Google LLC)
Task: {8166F735-585E-49C0-89AD-658E2F0F9A2D} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-25] (Corel Corporation -> Corel Corporation)
Task: {9F9FDCA7-65F7-4D42-8AEA-9E303D59C312} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\AdobeGCInvoker-1.0" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\BA Scheduler" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\EPSON XP-430 Series Update {4096E76B-F21C-4D1E-96D3-5B18C92C0122}" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-3358373597-1690568811-3966139131-1001" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\Quick Driver Updater skipuac" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{46199E18-599D-4060-9554-AECE3B7CD090}" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\WavesorSWUpdaterTaskUserS-1-5-21-3358373597-1690568811-3966139131-1001Core" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\WavesorSWUpdaterTaskUserS-1-5-21-3358373597-1690568811-3966139131-1001UA" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\WinZip Update Notifier 1" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\WinZip Update Notifier 2" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\WinZip Update Notifier 3" /ENABLE
Task: {A09FBA7D-BFA4-4450-9A37-4DEA520A46D8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {A6DE2D4C-BD7A-4611-8C7A-72FB8D7256F1} - System32\Tasks\NCH Software\InventoriaSchedBackup => C:\Program Files (x86)\NCH Software\Inventoria\Inventoria.exe [1771592 2020-05-15] (NCH Software, Inc. -> NCH Software)
Task: {B619201D-1F8B-42ED-8ABF-EB18029BD895} - System32\Tasks\Wavesor Software_S-1-5-21-3358373597-1690568811-3966139131-1001\WaveBrowser-StartAtLogin => C:\Users\Debbie\Wavesor Software\WaveBrowser\wavebrowser.exe [2240144 2021-09-28] (Wavesor Software -> Wavesor Software)
Task: {D8AF7D68-80A1-4963-AB2C-CA01A71E0568} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4929304 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
Task: {E12154D5-728C-4DC3-92E3-FDEAE3D18252} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask .job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON XP-430 Series Update {4096E76B-F21C-4D1E-96D3-5B18C92C0122}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPAE.E XE:/EXE:{4096E76B-F21C-4D1E-96D3-5B18C92C0122} /F:UpdateWORKGROUP\DESKTOP-ELI7VR8$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{ef7a85fb-3144-4027-9b39-96105a998004}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wek yb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wek yb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wek yb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wek yb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Debbie\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-17]

FireFox:
========
FF DefaultProfile: 4oh45ttj.default
FF ProfilePath: C:\Users\Debbie\AppData\Roaming\Mozilla\Firefox\Pr ofiles\4oh45ttj.default [2021-07-11]
FF ProfilePath: C:\Users\Debbie\AppData\Roaming\Mozilla\Firefox\Pr ofiles\jtavwzjp.default-release [2021-03-22]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_ex tn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_ex tn\adobe_acrobat-1.0-windows.xpi [2021-06-26]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_ex tn\adobe_acrobat-1.0-windows.xpi
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-10-06] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-10-06] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default [2021-10-21]
CHR Notifications: Default -> hxxps//apps4u.store; hxxps//mail.google.com; hxxps//www.directhit.com; hxxps//www.facebook.com; hxxps//www.wish.com
CHR Extension: (Slides) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhon fmgoek [2021-08-11]
CHR Extension: (Docs) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfi lokake [2019-09-12]
CHR Extension: (Google Drive) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigk jlhalf [2020-10-31]
CHR Extension: (YouTube) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldk acnbeo [2019-09-12]
CHR Extension: (Adobe Acrobat) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefi ndmkaj [2021-10-20]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihc jkigck [2021-10-13]
CHR Extension: (Sheets) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpeb giejap [2019-09-12]
CHR Extension: (Google Docs Offline) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdl olhkhi [2021-10-19]
CHR Extension: (securyBrowse) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kojidghikgbmicmgpmcdfallpa caanel [2021-06-03]
CHR Extension: (AVG SafePrice | Comparison, deals, coupons) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcigh gikkgn [2021-08-11]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccm gmieda [2021-02-09]
CHR Extension: (Browser Checkup for Chrome by Doctor) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\okjdbeegldeilceaflghgfdemo bmfhbd [2021-07-08]
CHR Extension: (Gmail) - C:\Users\Debbie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoe jaedia [2020-10-31]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844528 2021-10-06] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3833088 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3603200 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8323664 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [630040 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [377624 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 InventoriaService; C:\Program Files (x86)\NCH Software\Inventoria\inventoria.exe [1771592 2020-05-15] (NCH Software, Inc. -> NCH Software)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7265328 2020-10-31] (Malwarebytes Inc -> Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.2296\McCHSvc.exe [416752 2021-09-03] (McAfee, LLC -> McAfee, LLC)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\\McCSPServiceHost.exe [2687856 2020-01-25] (McAfee, LLC. -> McAfee, LLC.)
R2 SafeConnectService; C:\Program Files (x86)\McAfee\McAfee Safe Connect\SafeConnect.ServiceHost.exe [31968 2021-05-26] (McAfee, LLC -> McAfee, LLC.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-15] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [221600 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [369176 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250408 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99368 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41368 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [184640 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [538480 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107864 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851712 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [557152 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215392 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [328568 2021-10-03] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [217600 2021-06-02] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2021-06-06] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-01-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-01-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-15] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-10-21 14:59 - 2021-10-21 14:59 - 002310656 _____ (Farbar) C:\Users\Debbie\Downloads\FRST64 (14).exe
2021-10-21 14:59 - 2021-10-21 14:59 - 000001492 _____ C:\Users\Debbie\Desktop\FRST64 (14) - Shortcut.lnk
2021-10-21 14:58 - 2021-10-21 14:58 - 002310656 _____ (Farbar) C:\Users\Debbie\Downloads\FRST64 (13).exe
2021-10-19 10:26 - 2021-10-19 10:26 - 002310656 _____ (Farbar) C:\Users\Debbie\Downloads\FRST64 (12).exe
2021-10-19 10:21 - 2021-10-19 10:21 - 000000579 _____ C:\Users\Debbie\AppData\Roaming\Microsoft\Windows\ Start Menu\Programs\FRST.lnk
2021-10-18 17:29 - 2021-10-18 17:29 - 002310656 _____ (Farbar) C:\Users\Debbie\Downloads\FRST64 (11).exe
2021-10-18 17:28 - 2021-10-18 17:28 - 002019328 _____ (Farbar) C:\Users\Debbie\Downloads\FRST (5).exe
2021-10-18 17:27 - 2021-10-18 17:28 - 002019328 _____ (Farbar) C:\Users\Debbie\Downloads\FRST (4).exe
2021-10-18 17:27 - 2021-10-18 17:27 - 002310656 _____ (Farbar) C:\Users\Debbie\Downloads\FRST64 (10).exe
2021-10-13 07:40 - 2021-10-13 07:40 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2021-10-13 07:40 - 2021-10-13 07:40 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2021-10-13 07:39 - 2021-10-13 07:39 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-10-13 07:39 - 2021-10-13 07:39 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-10-13 07:39 - 2021-10-13 07:39 - 000011495 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-13 07:38 - 2021-10-13 07:38 - 001823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-13 07:38 - 2021-10-13 07:38 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-13 07:38 - 2021-10-13 07:38 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-13 07:38 - 2021-10-13 07:38 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-13 07:37 - 2021-10-13 07:37 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-13 07:37 - 2021-10-13 07:37 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-13 07:37 - 2021-10-13 07:37 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjec ts.dll
2021-10-13 07:37 - 2021-10-13 07:37 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-10-13 07:05 - 2021-10-13 07:05 - 000000000 ___HD C:\$WinREAgent
2021-10-07 22:43 - 2021-10-07 22:43 - 000956512 _____ (Wavesor Software) C:\Users\Debbie\Downloads\Wave Browser (2).exe
2021-10-07 22:42 - 2021-10-07 22:43 - 000956512 _____ (Wavesor Software) C:\Users\Debbie\Downloads\Wave Browser (1).exe
2021-10-07 22:42 - 2021-10-07 22:42 - 000956512 _____ (Wavesor Software) C:\Users\Debbie\Downloads\Wave Browser.exe
2021-10-03 01:08 - 2021-10-03 01:08 - 000340248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-10-03 01:08 - 2021-10-03 01:08 - 000215392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-09-27 12:29 - 2021-09-27 12:29 - 000082208 _____ C:\Users\Debbie\Downloads\5th Annual Memorial Ride for Mason Avery Mitchell (3).pdf
2021-09-27 11:53 - 2021-09-27 11:53 - 000081848 _____ C:\Users\Debbie\Downloads\5th Annual Memorial Ride for Mason Avery Mitchell (2).pdf
2021-09-27 11:45 - 2021-09-27 11:45 - 000080648 _____ C:\Users\Debbie\Downloads\5th Annual Memorial Ride for Mason Avery Mitchell (1).pdf
2021-09-27 11:44 - 2021-09-27 11:44 - 000080648 _____ C:\Users\Debbie\Downloads\5th Annual Memorial Ride for Mason Avery Mitchell.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-10-21 15:02 - 2021-06-01 11:26 - 000030624 _____ C:\Users\Debbie\Downloads\FRST.txt
2021-10-21 15:02 - 2021-06-01 11:26 - 000000000 ____D C:\FRST
2021-10-21 14:54 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-21 14:47 - 2020-08-27 17:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-21 14:25 - 2019-09-12 18:42 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-21 14:11 - 2020-08-27 17:50 - 000004170 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronizatio n-{46199E18-599D-4060-9554-AECE3B7CD090}
2021-10-21 08:28 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-21 08:28 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-20 19:55 - 2021-07-27 09:45 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-10-18 22:48 - 2021-09-14 10:02 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2021-10-18 17:37 - 2021-06-01 11:30 - 000034169 _____ C:\Users\Debbie\Downloads\Addition.txt
2021-10-17 21:10 - 2020-08-27 17:50 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-10-17 20:46 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-17 18:21 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-16 09:30 - 2020-03-16 02:08 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-16 09:30 - 2020-03-16 02:08 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-16 08:19 - 2020-08-27 17:50 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3358373597-1690568811-3966139131-1001
2021-10-16 08:19 - 2020-08-27 17:25 - 000002386 _____ C:\Users\Debbie\AppData\Roaming\Microsoft\Windows\ Start Menu\Programs\OneDrive.lnk
2021-10-13 22:12 - 2021-07-19 11:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-10-13 22:11 - 2021-07-27 10:23 - 000002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2021-10-13 22:11 - 2021-07-27 10:23 - 000002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-10-13 19:10 - 2019-12-07 05:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-13 18:28 - 2019-09-12 18:43 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-13 18:28 - 2019-09-12 18:43 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-13 18:23 - 2021-07-19 11:57 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-10-13 18:20 - 2020-08-27 17:50 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskM achineUA
2021-10-13 18:20 - 2020-08-27 17:50 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineU A
2021-10-13 18:20 - 2020-08-27 17:50 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskM achineCore
2021-10-13 18:20 - 2020-08-27 17:50 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineC ore
2021-10-13 18:15 - 2021-07-27 09:53 - 000000000 ___RD C:\Users\Debbie\Creative Cloud Files
2021-10-13 18:13 - 2020-08-27 17:33 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-13 18:11 - 2021-04-06 12:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\Wavesor Software_S-1-5-21-3358373597-1690568811-3966139131-1001
2021-10-13 18:11 - 2021-04-06 12:25 - 000000000 ____D C:\Users\Debbie\Wavesor Software
2021-10-13 18:07 - 2021-04-06 12:25 - 000003532 _____ C:\WINDOWS\system32\Tasks\WavesorSWUpdaterTaskUser S-1-5-21-3358373597-1690568811-3966139131-1001UA
2021-10-13 18:07 - 2021-04-06 12:25 - 000003264 _____ C:\WINDOWS\system32\Tasks\WavesorSWUpdaterTaskUser S-1-5-21-3358373597-1690568811-3966139131-1001Core
2021-10-13 18:07 - 2021-04-06 11:18 - 000002700 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2021-10-13 18:07 - 2021-04-06 11:18 - 000002698 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2021-10-13 18:07 - 2021-04-06 11:18 - 000002698 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2021-10-13 18:07 - 2020-08-27 17:50 - 000003502 _____ C:\WINDOWS\system32\Tasks\EPSON XP-430 Series Update {4096E76B-F21C-4D1E-96D3-5B18C92C0122}
2021-10-13 18:07 - 2020-08-27 17:50 - 000003058 _____ C:\WINDOWS\system32\Tasks\BA Scheduler
2021-10-13 18:07 - 2020-08-27 17:50 - 000002482 _____ C:\WINDOWS\system32\Tasks\Quick Driver Updater skipuac
2021-10-13 18:07 - 2020-04-05 13:08 - 000000951 _____ C:\WINDOWS\Tasks\EPSON XP-430 Series Update {4096E76B-F21C-4D1E-96D3-5B18C92C0122}.job
2021-10-13 18:07 - 2019-10-18 19:41 - 000000000 ____D C:\ProgramData\AVAST Software
2021-10-13 18:06 - 2020-08-27 17:20 - 000280040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-13 18:05 - 2020-08-27 17:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-13 18:05 - 2020-08-27 17:20 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-13 18:03 - 2019-12-07 05:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-10-13 18:02 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-13 18:02 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-13 18:01 - 2019-12-07 05:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-10-13 18:01 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-13 18:01 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-13 18:01 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-13 18:01 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-10-13 18:01 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-13 18:01 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-13 06:48 - 2019-08-13 16:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-13 06:44 - 2019-08-13 16:58 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-07 22:46 - 2021-04-06 12:27 - 000002297 _____ C:\Users\Debbie\AppData\Roaming\Microsoft\Windows\ Start Menu\Programs\WaveBrowser.lnk
2021-10-07 18:21 - 2021-07-27 09:40 - 000000000 ____D C:\Program Files\Adobe
2021-10-06 18:22 - 2021-07-27 09:45 - 000001346 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2021-10-06 18:22 - 2021-07-27 09:45 - 000001316 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2021-10-06 18:22 - 2021-07-27 09:40 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-06 18:22 - 2021-07-19 11:56 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-05 18:05 - 2021-07-27 09:49 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-10-03 01:08 - 2021-05-24 14:56 - 000021936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2021-10-03 01:08 - 2020-09-21 18:45 - 000184640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-10-03 01:08 - 2020-06-14 19:24 - 000557152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-10-03 01:08 - 2020-06-14 19:24 - 000538480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-10-03 01:08 - 2020-06-14 19:24 - 000328568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-10-03 01:08 - 2020-06-14 19:24 - 000250408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-10-03 01:08 - 2020-06-14 19:24 - 000107864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-10-03 01:08 - 2020-06-14 19:24 - 000099368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-10-03 01:08 - 2020-06-14 19:24 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-10-03 01:08 - 2020-06-14 19:24 - 000041368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-10-03 01:08 - 2019-12-07 05:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-10-03 01:07 - 2020-06-14 19:24 - 000851712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-10-03 01:07 - 2020-06-14 19:24 - 000369176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-10-03 01:07 - 2020-06-14 19:24 - 000221600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-10-03 01:07 - 2020-06-14 19:24 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-10-01 06:01 - 2021-01-22 04:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-27 13:31 - 2020-08-27 17:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-09-27 11:56 - 2020-08-27 17:25 - 000000000 ____D C:\Users\Debbie
2021-09-27 11:48 - 2019-10-18 19:51 - 000000000 ____D C:\Users\Debbie\AppData\Local\CrashDumps

==================== Files in the root of some directories ========

2021-07-27 09:55 - 2021-07-27 09:55 - 000000000 _____ () C:\Users\Debbie\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Reply With Quote