Microsoft Scam (health check)

This is what I have.
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-07-2022
Ran by David (05-07-2022 15:22:08)
Running from C:\Users\18658\Desktop
Microsoft Windows 10 Home Version 21H2 19044.1766 (X64) (2020-11-09 00:10:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1991557041-3823649620-1655308396-500 - Administrator - Disabled)
David (S-1-5-21-1991557041-3823649620-1655308396-1001 - Administrator - Enabled) => C:\Users\18658
DefaultAccount (S-1-5-21-1991557041-3823649620-1655308396-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1991557041-3823649620-1655308396-1000 - Limited - Disabled)
Guest (S-1-5-21-1991557041-3823649620-1655308396-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1991557041-3823649620-1655308396-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 22.001.20142 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Capture NX 2 (HKLM\...\Capture NX 2) (Version: 2.4.7 - NIKON CORPORATION)
Diskeeper 18 (HKLM\...\{12DA5C22-06B1-4935-BAC6-E54386B00DE5}) (Version: 20.0.1286.64 - Condusiv Technologies)
Free Blu-ray Player 1.1.18 (HKLM-x32\...\{FFF6624F-BB23-479d-B99E-0394EAD7BC74}_is1) (Version: 1.1.18 - Blu-ray Master)
Intel(R) Chipset Device Software (HKLM\...\{8C91A5EB-2C62-4A6D-8802-CC79FD2ED390}) (Version: 10.1.1.7 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{205AE40D-8AD7-4F29-A430-DD2168DA562D}) (Version: 14.5.0.1081 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Malwarebytes version 4.5.10.200 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.10.200 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.6168.9 - Waves Audio Ltd.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 103.0.1264.44 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1991557041-3823649620-1655308396-1001\...\OneDriveSetup.exe) (Version: 22.121.0605.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM-x32\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 X86 Additional Runtime - 14.16.27012 (HKLM-x32\...\{DD6BC8D7-4582-4677-BAAC-4AB933E6C315}) (Version: 14.16.27012 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 X86 Minimum Runtime - 14.16.27012 (HKLM-x32\...\{7B77DE7F-5219-435E-9CE1-FC77F1D4CCAD}) (Version: 14.16.27012 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 102.0 (x64 en-US)) (Version: 102.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.1 - Mozilla)
Mozilla Thunderbird (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 91.11.0 (x86 en-US)) (Version: 91.11.0 - Mozilla)
Nikon Message Center (HKLM-x32\...\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}) (Version: 0.92.000 - Nikon)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
NVIDIA Graphics Driver 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation)
Picture Control Utility (HKLM-x32\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.1.0 - Nikon)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.1 - Nikon)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
ScreenHunter 7.0 Free (HKLM-x32\...\ScreenHunter 7.0 Free_is1) (Version: 7.0.349 - Wisdom Software Inc.)
Spyder5Pro (HKLM-x32\...\Spyder5Pro) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinPatrol (HKLM\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 35.5.2017.8 - Ruiware)

Packages:
=========
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.84.4.0_x64__kgqvnymyfvs32 [2022-07-05] (king.com)
DVD Player - FREE -> C:\Program Files\WindowsApps\21336V3TApps.DVDPlayer-FREE_1.2.6.0_x86__bzg06mxvgh4fa [2022-05-28] (V3TApps)
Farm Heroes Saga -> C:\Program Files\WindowsApps\king.com.FarmHeroesSaga_5.83.3.0_x64__kgqvnymyfvs32 [2022-06-17] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.5310.0_x64__8wekyb3d8bbwe [2022-06-07] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-17] (NVIDIA Corp.)
Photos Add-on -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-12-25] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-05] (Microsoft Corporation)
XLSX Viewer Free -> C:\Program Files\WindowsApps\62307pauljohn.XLSXViewerFree_1.1.0.2_x86__7sv5v3m8wq0b2 [2021-11-08] (pauljohn)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-05-16] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nvshext.dll [2020-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-05-16] (Malwarebytes Inc. -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2016-05-31 18:40 - 2017-08-17 16:54 - 000096256 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\Appearance Pak.dll
2016-05-31 18:40 - 2017-08-17 16:54 - 000316928 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\CGamma.dll
2016-05-31 18:40 - 2017-08-17 16:54 - 000088576 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\Crypto.dll
2016-05-31 18:40 - 2017-08-17 16:54 - 000095232 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\CSensor.dll
2016-05-31 18:40 - 2017-08-17 16:54 - 000013824 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\Internet Encodings.dll
2016-05-31 18:40 - 2017-08-17 16:54 - 001865216 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\RBGUIFramework.dll
2016-05-31 18:40 - 2017-08-17 16:54 - 005340672 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\RBScript.dll
2016-05-31 18:40 - 2017-08-17 16:54 - 000090112 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\RegEx.dll
2016-05-31 18:40 - 2017-08-17 16:54 - 000031744 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\Shell.dll
2016-05-31 18:40 - 2017-08-17 16:54 - 000293376 _____ () [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\XML.dll
2020-01-12 16:59 - 2016-04-26 14:10 - 000116908 _____ () [File not signed] C:\Program Files (x86)\ScreenHunter 7.0 Free\libgcc_s_dw2-1.dll
2018-06-07 15:24 - 2018-06-07 15:24 - 000028672 _____ () [File not signed] C:\Program Files\Condusiv Technologies\Diskeeper\boost_chrono-vc110-mt-1_54.dll
2018-06-07 15:24 - 2018-06-07 15:24 - 000050176 _____ () [File not signed] C:\Program Files\Condusiv Technologies\Diskeeper\boost_date_time-vc110-mt-1_54.dll
2018-06-07 15:24 - 2018-06-07 15:24 - 000116224 _____ () [File not signed] C:\Program Files\Condusiv Technologies\Diskeeper\boost_filesystem-vc110-mt-1_54.dll
2018-06-07 15:24 - 2018-06-07 15:24 - 000637952 _____ () [File not signed] C:\Program Files\Condusiv Technologies\Diskeeper\boost_log-vc110-mt-1_54.dll
2018-06-07 15:24 - 2018-06-07 15:24 - 000019456 _____ () [File not signed] C:\Program Files\Condusiv Technologies\Diskeeper\boost_system-vc110-mt-1_54.dll
2018-06-07 15:24 - 2018-06-07 15:24 - 000098304 _____ () [File not signed] C:\Program Files\Condusiv Technologies\Diskeeper\boost_thread-vc110-mt-1_54.dll
2018-06-07 15:24 - 2018-06-07 15:24 - 000187392 _____ (Condusiv Technologies) [File not signed] C:\Program Files\Condusiv Technologies\Diskeeper\DkTabProvider.dll
2016-05-31 18:40 - 2015-04-13 08:12 - 000053248 _____ (Datacolor) [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\dccmtr.dll
2015-06-23 20:00 - 2015-06-23 20:00 - 000285696 _____ (Intel Corporation) [File not signed] [File is in use] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2015-06-23 20:00 - 2015-06-23 20:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2018-06-07 15:24 - 2018-06-07 15:24 - 002267648 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Condusiv Technologies\Diskeeper\LIBEAY32.dll
2018-06-07 15:24 - 2018-06-07 15:24 - 000356352 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Condusiv Technologies\Diskeeper\SSLEAY32.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 00:49 - 2019-03-19 00:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1991557041-3823649620-1655308396-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E9003BC6-5530-42D4-BC11-C4E2FBC6108E}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{2734A971-10DF-4A63-8E5B-682422B91A0D}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{B55DD7FA-CDE0-4DC4-A249-046697F2DB2A}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{EEB85608-F4B2-4F96-9846-DFA8C82E880D}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{042871FF-1B48-485C-B6FB-1F21D6DFBF84}] => (Allow) C:\Program Files\Condusiv Technologies\Diskeeper\DKService.exe (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
FirewallRules: [{7A4D98C3-380F-4627-A8A9-2FD4D521C518}] => (Allow) C:\Program Files\Condusiv Technologies\Diskeeper\DKService.exe (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
FirewallRules: [{FF7DC0D5-F447-4ED4-A97D-12FCFDA986DE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4A97556B-FD5B-4D17-8781-823EF2551D23}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2831E52D-3A35-4C62-8A96-8F290DB4993C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7E9CEA95-B59A-494C-B9EA-EC928590E694}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0771C084-A706-400E-87E3-8DE931E57F8A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2FED3B3D-673F-4869-872A-1B6C8DA7D6EE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.85.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

16-06-2022 15:20:04 Windows Modules Installer
24-06-2022 20:16:39 Scheduled Checkpoint
03-07-2022 20:21:06 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============

Name: Dell Wireless 1703 802.11b|g|n (2.4GHz)
Description: Dell Wireless 1703 802.11b|g|n (2.4GHz)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: athr
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (07/05/2022 11:09:58 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on Photo Copies (R (D because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

Error: (06/29/2022 09:16:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (06/28/2022 06:10:59 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (06/28/2022 06:10:59 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (06/28/2022 10:41:53 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on Photo Copies (R (D because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

Error: (06/28/2022 10:06:06 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on Photo Copies (R (D because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

Error: (06/26/2022 09:20:17 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (06/26/2022 09:20:17 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]


System errors:
=============
Error: (07/05/2022 10:51:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The UltraViewService service failed to start due to the following error:
The system cannot find the file specified.

Error: (07/05/2022 10:51:28 AM) (Source: athr) (EventID: 5003) (User: )
Description: Dell Wireless 1703 802.11b|g|n (2.4GHz) : Could not find a network adapter.

Error: (07/04/2022 09:47:36 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The UltraViewService service failed to start due to the following error:
The system cannot find the file specified.

Error: (07/04/2022 09:47:31 AM) (Source: athr) (EventID: 5003) (User: )
Description: Dell Wireless 1703 802.11b|g|n (2.4GHz) : Could not find a network adapter.

Error: (07/03/2022 03:08:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The UltraViewService service failed to start due to the following error:
The system cannot find the file specified.

Error: (07/03/2022 03:08:33 PM) (Source: athr) (EventID: 5003) (User: )
Description: Dell Wireless 1703 802.11b|g|n (2.4GHz) : Could not find a network adapter.

Error: (07/03/2022 09:56:37 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The UltraViewService service failed to start due to the following error:
The system cannot find the file specified.

Error: (07/03/2022 09:56:33 AM) (Source: athr) (EventID: 5003) (User: )
Description: Dell Wireless 1703 802.11b|g|n (2.4GHz) : Could not find a network adapter.


Windows Defender:
================Event[0]:

Date: 2022-06-29 21:16:41
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Network Inspection System
Error Code: 0x8007045b
Error description: A system shutdown is in progress.
Reason: The system is missing updates that are required for running Network Inspection System. Install the required updates and restart the device.

Date: 2022-03-12 21:05:50
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Network Inspection System
Error Code: 0x8007045b
Error description: A system shutdown is in progress.
Reason: The system is missing updates that are required for running Network Inspection System. Install the required updates and restart the device.

Date: 2022-02-03 09:50:02
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.357.42.0
Previous security intelligence Version: 1.355.2880.0
Update Source: User
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version: 1.1.18900.2
Previous Engine Version: 1.1.18800.4
Error code: 0x80070002
Error description: The system cannot find the file specified.

Date: 2022-02-03 09:50:02
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.357.42.0
Previous security intelligence Version: 1.355.2880.0
Update Source: User
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 1.1.18900.2
Previous Engine Version: 1.1.18800.4
Error code: 0x80070002
Error description: The system cannot find the file specified.

Date: 2022-02-03 09:50:02
Description:
Microsoft Defender Antivirus has encountered an error trying to update the engine.
New Engine Version: 1.1.18900.2
Previous Engine Version: 1.1.18800.4
Error Code: 0x80070002
Error description: The system cannot find the file specified.

CodeIntegrity:
===============
Date: 2022-07-05 11:09:57
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2022-07-05 10:52:53
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: Dell Inc. A14 05/31/2019
Motherboard: Dell Inc. 0KWVT8
Processor: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Percentage of memory in use: 52%
Total physical RAM: 16335.18 MB
Available physical RAM: 7821.59 MB
Total Virtual: 18767.18 MB
Available Virtual: 6880.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:464.69 GB) (Free:354.67 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS
Drive d: (Photo Copies (R) (Fixed) (Total:465.76 GB) (Free:217.51 GB) (Model: WDC WD5003ABYX-01WERA1) NTFS

\\?\Volume{c84e78f4-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.57 GB) (Free:0.12 GB) NTFS
\\?\Volume{c84e78f4-0000-0000-0000-805074000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C84E78F4)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=514 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: A6DEC461)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

 

I think this is the 2nd part.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-07-2022
Ran by David (administrator) on DESKTOP-NLL7OOS (Dell Inc. XPS 8700) (05-07-2022 15:21:01)
Running from C:\Users\18658\Desktop
Loaded Profiles: David
Platform: Microsoft Windows 10 Home Version 21H2 19044.1766 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\Condusiv Technologies\Diskeeper\DKService.exe ->) (CONDUSIV TECHNOLOGIES -> Condusiv Technologies) C:\Program Files\Condusiv Technologies\Diskeeper\BenefitsPopup.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(explorer.exe ->) ((c)2017 Datacolor) [File not signed] C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <4>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Ruiware, LLC -> Ruiware) C:\Program Files (x86)\WinPatrol\WinPatrol\WinPatrol.exe
(explorer.exe ->) (Wisdom Software Inc. -> Wisdom Software Inc.) C:\Program Files (x86)\ScreenHunter 7.0 Free\ScreenHunter7Free.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <26>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (CONDUSIV TECHNOLOGIES -> Condusiv Technologies) C:\Program Files\Condusiv Technologies\Diskeeper\DKService.exe
(services.exe ->) (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8504064 2015-08-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-08-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1991557041-3823649620-1655308396-1001\...\Run: [WinPatrol] => C:\Program Files (x86)\WinPatrol\WinPatrol\winpatrol.exe [1223560 2017-05-07] (Ruiware, LLC -> Ruiware)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScreenHunter 7.0 Free.lnk [2020-01-12]
ShortcutTarget: ScreenHunter 7.0 Free.lnk -> C:\Program Files (x86)\ScreenHunter 7.0 Free\ScreenHunter7Free.exe (Wisdom Software Inc. -> Wisdom Software Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk [2020-01-20]
ShortcutTarget: SpyderUtility.lnk -> C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility.exe ((c)2017 Datacolor) [File not signed]

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {154ED7A2-01C9-48C0-8775-F09BB9394047} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {CD525FD3-0F2C-4896-BDDE-9D2FD8E33E4A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {DF02BAD3-BC3A-46C5-90A2-C2A84DE5BB12} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9540daa2-e456-45b7-a221-48d67acb3bb6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f81c7fc1-f056-4e78-997a-bebd3b556e29}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\18658\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-05]

FireFox:
========
FF DefaultProfile: s0wkf26d.default-1517077043666
FF ProfilePath: C:\Users\18658\AppData\Roaming\Mozilla\Firefox\Profiles\s0wkf26d.default-1517077043666 [2022-07-05]
FF Session Restore: Mozilla\Firefox\Profiles\s0wkf26d.default-1517077043666 -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\s0wkf26d.default-1517077043666 -> hxxp://www.smartestcomputing.us.com; hxxps://www.bhphotovideo.com; hxxps://hc009-chat.tteccloud.com
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\18658\AppData\Roaming\Mozilla\Firefox\Profiles\s0wkf26d.default-1517077043666\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-05-31]
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-06-04] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default"},"rappor":{"cohort_seed":107,"last_daily_sample":"13129504661500903
CHR Profile: C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default [2020-01-11]
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Slides) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-11]
CHR Extension: (Docs) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-11]
CHR Extension: (Google Drive) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-11]
CHR Extension: (YouTube) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-11]
CHR Extension: (Google Search) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2020-01-11]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2020-01-11]
CHR Extension: (Avast SafePrice) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-01-11]
CHR Extension: (Sheets) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-11]
CHR Extension: (Google Docs Offline) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-11]
CHR Extension: (Avast Online Security) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-01-11]
CHR Extension: (Chrome Web Store Payments) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-11]
CHR Extension: (Gmail) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-11]
CHR Extension: (Chrome Media Router) - C:\Users\18658\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-11]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-07-03] (Avast Software s.r.o. -> AVAST Software)
R2 Diskeeper; C:\Program Files\Condusiv Technologies\Diskeeper\DKService.exe [3173568 2018-06-07] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8677120 2022-06-16] (Malwarebytes Inc. -> Malwarebytes)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 UltraViewService; "C:\Program Files (x86)\UltraViewer\UltraViewer_Service.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R0 DKDFM; C:\WINDOWS\System32\drivers\DKDFM.sys [57512 2018-01-18] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
R3 DKRtWrt; C:\Windows\system32\drivers\DKRtWrt.sys [48792 2016-01-28] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
R0 DKTLFSMF; C:\WINDOWS\System32\drivers\DKTLFSMF.sys [135872 2017-11-02] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-06-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [192960 2022-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [74680 2022-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181992 2022-07-05] (Malwarebytes Inc. -> Malwarebytes)
R1 tcefs; C:\Windows\system32\drivers\tcefs.sys [26776 2015-08-18] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies Corporation)
R0 tcesd; C:\WINDOWS\System32\drivers\tcesd.sys [238280 2017-09-29] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-07-05 15:21 - 2022-07-05 15:21 - 000015080 _____ C:\Users\18658\Desktop\FRST.txt
2022-07-05 15:20 - 2022-07-05 15:21 - 000000000 ____D C:\FRST
2022-07-05 15:08 - 2022-07-05 15:08 - 002369024 _____ (Farbar) C:\Users\18658\Desktop\FRST64.exe
2022-07-05 10:52 - 2022-07-05 10:52 - 000074680 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-07-05 10:51 - 2022-07-05 10:51 - 000192960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-07-05 10:51 - 2022-07-05 10:51 - 000181992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-07-04 09:52 - 2022-07-04 09:52 - 000000000 ____D C:\Users\18658\AppData\Roaming\Avast Software
2022-07-04 09:50 - 2022-07-04 09:50 - 021627064 ____C C:\unp309697724186409301i-manual.mdmp
2022-07-04 09:50 - 2022-07-04 09:49 - 000065944 _____ (Avast Software) C:\WINDOWS\system32\Drivers\aswd8fe032afa599d8a.tmp
2022-07-04 09:49 - 2022-07-04 09:49 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-07-04 09:49 - 2022-07-03 20:07 - 000270592 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-07-03 20:08 - 2022-07-04 09:49 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2022-07-03 20:08 - 2022-07-03 20:08 - 000668208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw4dfd6a565511192d.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000553928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw886ef1671021e984.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000324864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw379688429ddc4dbe.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000274536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9a3f5f7aef93d25b.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000258072 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9e01475e4c9ebb0f.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000221528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswdfc7e52f657b7837.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000113984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw167fb61847fb2bc3.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000104976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswb2f203dad3454bdc.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000089056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw62991fc48eae6f27.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000047976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw2b11e91374ed88c4.tmp
2022-07-03 20:08 - 2022-07-03 20:08 - 000025048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw60d67b23fdfce9ad.tmp
2022-07-03 20:08 - 2022-07-03 20:07 - 000860416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw88d600b973f8ae06.tmp
2022-07-03 20:08 - 2022-07-03 20:07 - 000385560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswdb26d7971d151459.tmp
2022-07-03 20:08 - 2022-07-03 20:07 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8dc8c667323c440c.tmp
2022-07-03 20:08 - 2022-07-03 20:07 - 000041832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw42989708dcdacb40.tmp
2022-07-03 20:07 - 2022-07-05 13:55 - 000000000 ____D C:\Program Files\Avast Software
2022-07-03 20:06 - 2022-07-05 13:55 - 000000000 ____D C:\ProgramData\Avast Software
2022-07-03 13:59 - 2022-07-03 13:59 - 000000000 ____D C:\Users\18658\Desktop\Pat Garret
2022-07-01 19:46 - 2022-07-04 18:38 - 000000000 ____D C:\Users\18658\Desktop\Microsoft Scam July 1st
2022-07-01 19:45 - 2022-07-01 19:46 - 000000000 ____D C:\AdwCleaner
2022-07-01 19:44 - 2022-07-01 19:44 - 008551608 _____ (Malwarebytes) C:\Users\18658\Desktop\adwcleaner.exe
2022-07-01 18:48 - 2022-07-01 19:47 - 000000000 _____ C:\WINDOWS\UV_LastPW.ini
2022-07-01 17:54 - 2022-07-01 18:04 - 000000000 ____D C:\Users\18658\AppData\Roaming\UltraViewer
2022-07-01 17:53 - 2022-07-03 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraViewer
2022-07-01 09:43 - 2022-07-01 09:43 - 000000000 ____D C:\Users\18658\.ms-ad
2022-06-30 20:36 - 2022-06-30 20:36 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-06-30 14:55 - 2022-07-01 18:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-06-27 18:23 - 2022-06-27 18:23 - 000000000 ____D C:\Users\18658\Desktop\Dr. Williams
2022-06-26 21:06 - 2022-06-28 16:43 - 000000000 ____D C:\Users\18658\Desktop\Crepe Myrtle Problem
2022-06-16 15:25 - 2022-06-16 15:25 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-06-16 15:25 - 2022-06-16 15:25 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-16 15:25 - 2022-06-16 15:25 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-16 15:25 - 2022-06-16 15:25 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-16 15:25 - 2022-06-16 15:25 - 000011787 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-06-16 15:20 - 2022-06-16 15:20 - 000000000 ___HD C:\$WinREAgent
2022-06-16 14:38 - 2022-06-16 14:38 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-06-10 10:59 - 2022-06-10 10:59 - 000000361 _____ C:\Users\18658\Desktop\I Miss My Dog Has Grief for a Dog Who Died Ever Overwhelmed You – Dogster.URL
2022-06-10 10:14 - 2022-06-10 10:14 - 004429995 _____ C:\Users\18658\Desktop\020611005 label.pdf
2022-06-07 20:49 - 2022-06-16 09:30 - 000000000 ____D C:\Users\18658\Desktop\SE158D
2022-06-05 19:14 - 2022-06-05 19:14 - 000224944 _____ C:\Users\18658\Desktop\CK83284USID.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-07-05 15:17 - 2020-01-11 15:59 - 000000000 ____D C:\Users\18658\AppData\LocalLow\Mozilla
2022-07-05 15:09 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-05 14:43 - 2020-11-08 20:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-05 13:07 - 2020-01-11 17:03 - 000000020 ____H C:\ProgramData\PKP_DLbx.DAT
2022-07-05 13:06 - 2020-01-12 10:25 - 000000000 ____D C:\Users\18658\AppData\LocalLow\IGDump
2022-07-05 11:10 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-05 11:10 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-05 10:58 - 2020-11-08 20:14 - 000842418 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-05 10:58 - 2019-12-07 05:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-05 10:57 - 2020-01-11 15:57 - 000000000 ____D C:\ProgramData\Mozilla
2022-07-05 10:53 - 2022-02-09 12:17 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-05 10:52 - 2020-01-11 15:47 - 000000000 ___RD C:\Users\18658\OneDrive
2022-07-05 10:51 - 2020-11-08 20:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-05 10:51 - 2020-11-08 20:04 - 000008192 ___SH C:\DumpStack.log.tmp
2022-07-05 10:51 - 2020-06-07 12:46 - 000000000 ____D C:\ProgramData\NVIDIA
2022-07-04 21:11 - 2019-12-07 05:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-07-04 18:46 - 2020-01-11 16:00 - 000002021 _____ C:\Users\18658\Desktop\Diskeeper 18.lnk
2022-07-04 18:38 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\Misc
2022-07-04 13:22 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\Mom&Dad&Me
2022-07-04 12:20 - 2022-02-21 12:28 - 000000000 ____D C:\Users\18658\Desktop\New folder
2022-07-04 10:20 - 2020-01-11 15:56 - 000000000 ____D C:\Users\18658\AppData\Local\AVAST Software
2022-07-04 09:49 - 2019-12-07 05:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-07-03 15:08 - 2020-11-08 20:04 - 000257824 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-07-03 14:00 - 2021-01-09 15:46 - 000000000 ____D C:\Users\18658\Desktop\Misc II
2022-07-03 11:03 - 2020-01-11 17:36 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-07-01 20:55 - 2020-07-05 12:45 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-01 18:48 - 2020-01-11 15:57 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-07-01 09:43 - 2020-11-08 14:24 - 000000000 ____D C:\Users\18658
2022-06-30 20:36 - 2021-10-28 20:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-06-30 20:36 - 2021-10-28 20:11 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-06-29 16:09 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-06-28 18:11 - 2020-10-28 13:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-06-28 11:51 - 2021-10-05 10:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-06-28 11:51 - 2020-01-11 16:00 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-06-27 18:29 - 2021-01-08 13:56 - 000000000 ____D C:\Users\18658\Desktop\Church Folks
2022-06-27 18:28 - 2022-04-02 12:04 - 000000000 ____D C:\Users\18658\Desktop\Everly Brothers
2022-06-27 18:26 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\Capone
2022-06-27 18:21 - 2020-05-13 14:17 - 000000000 ____D C:\Users\18658\Desktop\Family
2022-06-27 15:02 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\Dog Prayers
2022-06-26 16:10 - 2021-12-13 21:08 - 000000000 ____D C:\Users\18658\Desktop\Charlotte
2022-06-25 13:31 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\Peanuts
2022-06-24 20:55 - 2020-01-11 15:45 - 000000000 ____D C:\ProgramData\Packages
2022-06-24 17:04 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\Internet Shorts
2022-06-23 16:48 - 2021-07-01 18:13 - 000000000 ____D C:\Users\18658\Desktop\Sweethearts I remember
2022-06-23 09:58 - 2020-01-11 18:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-06-22 18:27 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\PDF Files
2022-06-22 12:37 - 2021-12-11 11:57 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1991557041-3823649620-1655308396-1001
2022-06-22 12:37 - 2020-11-08 20:09 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1991557041-3823649620-1655308396-1001
2022-06-22 12:37 - 2020-11-08 14:24 - 000002383 _____ C:\Users\18658\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-06-19 15:22 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\Bubby
2022-06-18 21:15 - 2020-11-26 11:15 - 000000000 ____D C:\Users\18658\Desktop\Misc Cotton Mill
2022-06-16 20:49 - 2020-12-08 16:39 - 000000000 ____D C:\Users\18658\Desktop\N. Charlotte
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-06-16 17:42 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-06-16 17:42 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\servicing
2022-06-16 16:00 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\Me and Bub
2022-06-16 15:58 - 2020-04-19 14:22 - 000000000 ____D C:\Users\18658\Desktop\Bubby and Me
2022-06-16 15:27 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-06-16 15:25 - 2020-11-08 20:06 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-06-16 15:20 - 2020-01-11 18:01 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-06-16 15:18 - 2020-01-11 18:01 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-16 09:30 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\More Bubby
2022-06-11 10:49 - 2020-11-08 20:09 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-11 10:49 - 2020-11-08 20:09 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-06-10 18:47 - 2020-03-06 21:11 - 000000000 ____D C:\Users\18658\Desktop\New Peanuts
2022-06-10 18:37 - 2021-11-13 15:24 - 000000000 ____D C:\Users\18658\Desktop\My Posts
2022-06-10 13:24 - 2021-11-11 17:55 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-06-10 13:24 - 2020-01-11 17:24 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-06-06 17:31 - 2020-01-11 16:00 - 000000000 ____D C:\Users\18658\Desktop\Cotton Mill

==================== Files in the root of some directories ========

2020-01-11 17:04 - 2020-01-11 17:16 - 000000268 ___RH () C:\Users\18658\AppData\Roaming\DirectoryService
2020-01-11 15:59 - 2014-09-12 14:27 - 000000268 ___RH () C:\Users\18658\AppData\Roaming\Galaxy Swirl
2020-01-11 15:56 - 2019-02-17 23:20 - 334218534 _____ () C:\Users\18658\AppData\Local\ACCCx4_8_0_421.zip.aamdownload
2020-01-11 15:56 - 2019-02-17 23:20 - 000003714 _____ () C:\Users\18658\AppData\Local\ACCCx4_8_0_421.zip.aamdownload.aamd
2020-01-11 15:59 - 2018-09-26 18:29 - 000000000 _____ () C:\Users\18658\AppData\Local\oobelibMkey.log
2020-01-11 15:59 - 2019-11-16 22:30 - 000007619 _____ () C:\Users\18658\AppData\Local\Resmon.ResmonCfg

==================== FLock ==============================

2022-07-01 19:47 C:\WINDOWS\UV_LastPW.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

 

Just saw this. I was going it install Avast One and decided not to. I think I got rid of it. Take that back, I do see it in the C-Program Data but I'm not sure where the "Open folder" is and I can't delete it till that's closed.

 

I clicked Fix and this came up.

 

Both were saved to the desktop. I attached above all that I see on the desktop. There is another I saw called Addition.txt. Do you need that one?

 

starbuck-You kinda lost me here. I've highlighted all the above from start to end. What do I do with it?

 

OK-This is what I did. I ran FRST again and hit Fix. This was the txt file it left.

 

Good deal-looks like it logged me out of FB and all the other places I go when it deleted those tmp files. Good thing I have my passwords written down! I'll do the FRST uninstall and hope all is well. Many thanks to CHF and all that helped with this...grateful.

At 76 I can still follow instructions pretty fair.

 

There were several sites I had to log back in like FB and Yahoo but, I guess I hadn't saved the passwords. I had to log back in here to be able to reply. All history was gone but that's no big problem. That's something that will build back up quickly. Every now and then I delete temporary files by typing in %temp% and delete Internet cache hoping that will speed things up a bit.