@DavidR
Thanks for that info. Sure enough, there are my popup exclusions. Among them Zemana AntiLogger, a DynDNS client, SumatraPDF, Java's jp2launcher and java.exe and javacpl, Pale Moon's plugincontainer... And that's just in Moderate.
And my password manager. It's all backed up and easily recovered but the wait was still disturbing.
As for them not populating the Hardened tab in the GUI, maybe a bug. Maybe not. It's irrelevant as I've disabled the mode. It's way, way too chatty.
If anything slips by avast, I'm also running Online Armor Premium, Zemana AL Pro and Malwarebytes Pro in parallel.
While I'm thinking about it, how is that Hardened Mode supposed to be for the "inexperienced user"? Like he/she would know what to do about plugincontainer.
Cheers.