Ran by bloom (administrator) on DESKTOP-6E6EVRB (Hewlett-Packard HP ZBook 15 G2) (10-11-2019 11:34:36)
Running from C:\Users\bloom\Desktop
Loaded Profiles: bloom (Available Profiles: bloom)
Platform: Windows 10 Pro Version 1903 18362.418 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\AMD\CNext\CCCSlim\MOM.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340598.inf_amd64_3f98f2335f59980a\B340501\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340598.inf_amd64_3f98f2335f59980a\B340501\atiesrxx.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\HotKeyServiceUWP.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\HPHotkeyNotification.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\LanWlanWwanSwitchingServiceUWP.exe
(Intel® pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel® Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\bloom\AppData\Local\Microsoft\OneDrive\19.174.0902.0013\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\bloom\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1001.4.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.33.18003.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.33.18003.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\NisSrv.exe
(PC DRIVERS HEADQUARTERS I, INC -> PC Drivers Headquarters LP) C:\Program Files (x86)\Driver Support\DriverSupport.exe
(PC DRIVERS HEADQUARTERS I, INC -> PC Drivers HeadQuarters LP) C:\Program Files (x86)\Driver Support\svc\DriverSupportAO.exe
(PC DRIVERS HEADQUARTERS I, INC -> PC Drivers HeadQuarters LP) C:\Program Files (x86)\Driver Support\svc\DriverSupportAOsvc.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\Installer\chrmstp.exe [2019-11-07] (Google LLC -> Google LLC)
Task: {04542C0B-D2AD-4FCF-83DC-63B87E076C89} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-14] (Google Inc -> Google LLC)
Task: {045FC227-3C81-4FF3-87DE-5273C9CBA129} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367496 2019-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {153B74EB-A15C-407A-81F3-4FB290C0B2FE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2169960 2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {19EB2CF3-6901-4777-BEB2-AEFF0A03C387} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2169960 2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {1D91F2F4-E286-404B-9D11-0AE8C200BB15} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367496 2019-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F3C0144-B07A-4BFE-B1FE-EAA78527610B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [156504 2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D33D6D3-0F80-4DAA-B400-156C73C5E3C4} - System32\Tasks\Advanced Identity Protector_PM => C:\Program Files (x86)\Advanced Identity Protector\AdvancedIdentityProtector.exe [14553056 2019-09-12] (SYSTWEAK SOFTWARE PVT. LTD. -> Systweak)
Task: {5304AC2C-4A45-4D1E-B8EA-3E197312E046} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {53FC9F4D-7D7A-4267-8A77-1B515352891F} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe
Task: {69B3FB09-36C5-4552-AB8E-A89FBC5C456C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {726C3970-532F-4B04-90F1-19760264D446} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [156504 2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {726D2384-64FF-4B2C-AAB3-5B70222E8B1A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9714ECC3-3394-44EC-8704-24170D4877FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9AAD7871-66D8-46A8-BC52-814547571CD8} - System32\Tasks\Driver Support-RTMScan => C:\Program Files (x86)\Driver Support\DriverSupport.exe [10714752 2018-12-12] (PC DRIVERS HEADQUARTERS I, INC -> PC Drivers Headquarters LP) <==== ATTENTION
Task: {AFEBED55-7804-4C4C-A03A-9D87B1AEF7C4} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-03-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B6B1EFCD-6406-43FA-8393-6BB652E5B1C6} - System32\Tasks\Driver Support-RTMRules => C:\Program Files (x86)\Driver Support\DriverSupport.exe [10714752 2018-12-12] (PC DRIVERS HEADQUARTERS I, INC -> PC Drivers Headquarters LP) <==== ATTENTION
Task: {D0C2ECB7-FD58-4B12-B3FC-B100F1EFD071} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-14] (Google Inc -> Google LLC)
Task: {DAF76242-238D-4EC8-8446-897C9E5FD9BB} - System32\Tasks\Advanced Identity Protector_startup => C:\Program Files (x86)\Advanced Identity Protector\AdvancedIdentityProtector.exe [14553056 2019-09-12] (SYSTWEAK SOFTWARE PVT. LTD. -> Systweak)
Task: {E59889C5-0F30-41F4-87AE-C351A8852DB0} - System32\Tasks\Driver Support => C:\Program Files (x86)\Driver Support\DriverSupport.exe [10714752 2018-12-12] (PC DRIVERS HEADQUARTERS I, INC -> PC Drivers Headquarters LP) <==== ATTENTION
==================== Internet (Whitelisted) ====================
Tcpip\..\Interfaces\{12cb1cf4-f80b-4f72-b15f-ba0504ded8e0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{436f444c-59a9-47e9-bbfc-f3d53f594240}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{7db86fe9-2391-4e80-af7b-6ea792d2cb95}: [DhcpNameServer] 192.168.5.2
Tcpip\..\Interfaces\{c7b26553-0523-40a7-85c1-29669b8dbfcb}: [DhcpNameServer] 75.75.75.75 75.75.76.76
==================
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation)
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
=======
CHR Profile: C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default [2019-11-07]
CHR Extension: (Slides) - C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-14]
CHR Extension: (Docs) - C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-14]
CHR Extension: (Google Drive) - C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-14]
CHR Extension: (YouTube) - C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-14]
CHR Extension: (Sheets) - C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-14]
CHR Extension: (Google Docs Offline) - C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-06]
CHR Extension: (Gmail) - C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-14]
CHR Extension: (Chrome Media Router) - C:\Users\bloom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-05]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11642744 2019-10-25] (Microsoft Corporation -> Microsoft Corporation)
R2 DSAO; C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe [2033104 2016-10-22] (PC DRIVERS HEADQUARTERS I, INC -> PC Drivers HeadQuarters LP) <==== ATTENTION <==== ATTENTION
R2 HotKeyServiceUWP; C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\HotKeyServiceUWP.exe [819856 2019-05-14] (HP Inc. -> HP Inc.)
R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [529696 2019-04-23] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373760 2017-01-27] (Intel® pGFX -> Intel Corporation)
R2 LanWlanWwanSwitchingServiceUWP; C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\LanWlanWwanSwitchingServiceUWP.exe [731072 2019-05-14] (HP Inc. -> HP Inc.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-01] (HP Inc.) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-01] (HP Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [265664 2018-05-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246872 2017-11-17] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\c0340598.inf_amd64_3f98f2335f59980a\B340501\atikmdag.sys [52894936 2019-03-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\c0340598.inf_amd64_3f98f2335f59980a\B340501\atikmpag.sys [598744 2019-03-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [111232 2019-03-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [111112 2017-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 hpdskflt; C:\Windows\System32\drivers\hpdskflt.sys [41104 2019-07-22] (HP Inc. -> HP)
S3 HPEWSFXBULK; C:\Windows\system32\drivers\hpfx64bulk.sys [29104 2019-06-11] (Hewlett-Packard Company -> Hewlett Packard)
R3 HpqKbFiltr; C:\Windows\System32\drivers\HpqKbFiltr.sys [50752 2019-05-14] (HP Inc. -> HP Inc.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [239392 2019-04-23] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3595472 2018-10-12] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
S3 Netwtw02; C:\Windows\System32\drivers\Netwtw02.sys [6824656 2018-10-12] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
R3 RTSPER; C:\Windows\System32\drivers\RtsPer.sys [887240 2018-05-29] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42584 2017-11-17] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv64.sys [1063520 2017-02-23] (SUNPLUS INNOVATION TECHNOLOGY INC. -> Sunplus Innovation Technology Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [351968 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [53984 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
==================== One month (created) ===================
2019-11-10 13:23 - 2019-11-10 13:36 - 000000000 ____D C:\Windows\Microsoft Antimalware
2019-11-10 11:34 - 2019-11-10 11:35 - 000022071 _____ C:\Users\bloom\Desktop\FRST.txt
2019-11-10 11:33 - 2019-11-10 11:35 - 000000000 ____D C:\FRST
2019-11-10 11:24 - 2019-11-10 11:24 - 002260480 _____ (Farbar) C:\Users\bloom\Desktop\FRST64.exe
2019-11-10 11:15 - 2019-11-10 11:15 - 000000000 ___HD C:\OneDriveTemp
2019-11-06 13:34 - 2019-11-10 11:14 - 000000000 ____D C:\Users\bloom\AppData\Roaming\ADNPR
2019-11-06 13:34 - 2019-11-10 10:42 - 000003530 _____ C:\Windows\system32\Tasks\Advanced Identity Protector_PM
2019-11-06 13:34 - 2019-11-06 13:34 - 000003272 _____ C:\Windows\system32\Tasks\Advanced Identity Protector_startup
2019-11-06 13:34 - 2019-11-06 13:34 - 000001301 _____ C:\Users\Public\Desktop\Advanced Identity Protector.lnk
2019-11-06 13:34 - 2019-11-06 13:34 - 000001301 _____ C:\ProgramData\Desktop\Advanced Identity Protector.lnk
2019-11-06 13:34 - 2019-11-06 13:34 - 000000000 ____D C:\Users\bloom\AppData\Roaming\Advanced Identity Protector
2019-11-06 13:34 - 2019-11-06 13:34 - 000000000 ____D C:\Users\bloom\AppData\Local\Systweak
2019-11-06 13:34 - 2019-11-06 13:34 - 000000000 ____D C:\ProgramData\Systweak
2019-11-06 13:34 - 2019-11-06 13:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Identity Protector
2019-11-06 13:34 - 2019-11-06 13:34 - 000000000 ____D C:\Program Files (x86)\Advanced Identity Protector
2019-11-06 13:34 - 2019-05-27 15:45 - 000024768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2019-11-06 13:34 - 2019-05-27 15:45 - 000023232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2019-11-06 13:34 - 2019-05-27 15:45 - 000021184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2019-11-06 13:34 - 2019-05-27 15:45 - 000019136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2019-11-06 13:34 - 2019-05-27 15:45 - 000019136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2019-11-06 13:34 - 2019-05-27 15:45 - 000018624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2019-11-06 13:34 - 2019-05-27 15:45 - 000018624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2019-11-06 13:34 - 2019-05-27 15:45 - 000018624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2019-11-06 13:16 - 2019-11-06 13:16 - 000000000 ____D C:\Users\bloom\AppData\Local\GoToAssist Remote Support Customer
2019-11-06 13:16 - 2019-11-06 13:16 - 000000000 ____D C:\Users\bloom\AppData\Local\GoTo Opener
2019-11-06 13:12 - 2019-11-10 11:15 - 000004166 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{8348E36B-36A8-4444-A45E-1CBEA1683424}
2019-11-10 11:31 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-10 11:18 - 2019-05-01 12:32 - 000840888 _____ C:\Windows\system32\PerfStringBackup.INI
2019-11-10 11:15 - 2019-07-14 13:57 - 000000000 ___RD C:\Users\bloom\OneDrive
2019-11-10 11:15 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\AppReadiness
2019-11-10 11:13 - 2019-05-01 12:26 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-11-10 10:38 - 2019-07-14 14:02 - 000000000 ____D C:\Users\bloom\AppData\Local\D3DSCache
2019-11-10 10:37 - 2019-07-14 13:56 - 000000000 __SHD C:\Users\bloom\IntelGraphicsProfiles
2019-11-10 10:37 - 2019-07-02 13:58 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-11-10 10:37 - 2019-05-01 12:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-11-10 10:23 - 2019-07-02 12:36 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2019-11-10 10:23 - 2019-03-18 23:37 - 000786432 _____ C:\Windows\system32\config\BBI
2019-11-09 13:43 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-07 13:02 - 2019-07-14 13:49 - 000000000 ____D C:\Users\bloom
2019-11-07 13:00 - 2019-03-18 23:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-11-07 12:59 - 2019-07-14 12:24 - 000003552 _____ C:\Windows\system32\Tasks\Driver Support
2019-11-07 12:59 - 2019-07-14 12:04 - 000000000 ____D C:\Program Files\Microsoft Office
2019-11-07 00:24 - 2019-07-14 14:01 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-07 00:24 - 2019-07-14 14:01 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-11-07 00:24 - 2019-07-14 14:01 - 000002267 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2019-11-05 08:45 - 2019-07-14 14:01 - 000003420 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-05 08:45 - 2019-07-14 14:01 - 000003296 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-05 08:45 - 2019-07-14 14:01 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-29 00:49 - 2019-05-01 12:26 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-10-28 23:28 - 2019-07-14 13:57 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-201017515-1732844204-1793734442-1001
2019-10-28 23:28 - 2019-07-14 13:49 - 000002370 _____ C:\Users\bloom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-17 12:40 - 2019-08-31 09:26 - 000000000 ____D C:\Users\bloom\Documents\RECIPES
Ran by bloom (10-11-2019 11:36:55)
Running from C:\Users\bloom\Desktop
Windows 10 Pro Version 1903 18362.418 (X64) (2019-07-02 18:58:10)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
bloom (S-1-5-21-201017515-1732844204-1793734442-1001 - Administrator - Enabled) => C:\Users\bloom
DefaultAccount (S-1-5-21-201017515-1732844204-1793734442-503 - Limited - Disabled)
Guest (S-1-5-21-201017515-1732844204-1793734442-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-201017515-1732844204-1793734442-504 - Limited - Disabled)
Advanced Identity Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~CF2982E1_is1) (Version: 2.1.1000.2590 - Systweak Software) <==== ATTENTION
AMD Settings (HKLM\...\WUCCCApp) (Version: 2019.0313.1224.22338 - Advanced Micro Devices, Inc.)
Driver Support (HKLM-x32\...\DriverSupport) (Version: 10.1.6.14 - PC Drivers HeadQuarters LP) <==== ATTENTION
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.97 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
HP Battery Check (HKLM-x32\...\HP Battery Check) (Version: 4.3.2.2 - Hewlett-Packard)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Microsoft Office Home and Business 2019 - en-us (HKLM\...\HomeBusiness2019Retail - en-us) (Version: 16.0.12130.20272 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-201017515-1732844204-1793734442-1001\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12130.20272 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12130.20272 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12130.20272 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8451 - Realtek Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.65 - Synaptics Incorporated)
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.1.4.0_x86__kgqvnymyfvs32 [2019-09-23] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.22.7.0_x86__kgqvnymyfvs32 [2019-10-03] (king.com)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-10-09] (Facebook Inc)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_100.1.581.0_x64__v10z8vjag6ke6 [2019-07-22] (HP Inc.)
Mail and Calendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-02] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-07] (Microsoft Studios) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-14] (Microsoft Corporation) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0 [2019-10-09] (Spotify AB) [Startup Task]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2017-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
2018-07-06 16:36 - 2018-07-06 16:36 - 002552832 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000502272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 001412608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-03-13 14:22 - 2019-03-13 14:22 - 005812224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 006321152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 003559424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 003700224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000359936 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 076160000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 005603840 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000187904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 002822144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2018-07-06 16:37 - 2018-07-06 16:37 - 000053248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2018-07-06 16:37 - 2018-07-06 16:37 - 000059904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-07-06 16:37 - 2018-07-06 16:37 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-07-06 16:37 - 2018-07-06 16:37 - 000328192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-07-06 16:37 - 2018-07-06 16:37 - 000137728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2018-07-06 16:37 - 2018-07-06 16:37 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-07-06 16:37 - 2018-07-06 16:37 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-07-06 16:36 - 2018-07-06 16:36 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
FirewallRules: [UDP Query User{AF63D45A-1D9C-44D1-93D0-9EF4BE692D5F}D:\sdi_rus\sdi_x64_r1904.exe] => (Block) D:\sdi_rus\sdi_x64_r1904.exe No File
FirewallRules: [{85E45F49-51B9-4073-88E6-A4CE968602CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A77CABCB-FAAE-4CBD-A81C-7E4560994DFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6317723C-5B6F-4B6A-8A40-B0CE93E7C431}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D395994B-096C-492A-AB97-B20C301A2F50}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E5966807-EA91-4603-A1C6-6625489E890F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{552BB1F2-7E2B-4196-B388-454692ED6C94}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D8F2B876-E380-4C3E-A555-7657ED98BCA6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{768E36A8-8B69-4BD4-B21B-7DFD25D1E5C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.117.543.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8B3220CD-97C9-4274-B5EE-2616DD19E4F0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{8834B324-A0E2-445A-A63D-149FFB467D2E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
==================
Error: (11/10/2019 10:46:37 AM) (Source: Driver Support) (EventID: 200) (User: )
Description: Timestamp: 11/10/2019 3:46:37 PM
Message: An exception occured and was caught: WebException
---------Exception Information----------
Local Time: 11/10/2019 10:46:37 AM
Type: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: System.Web.Services
Target Site: System.Net.WebResponse WaitForResponse()
Stack Trace: at System.Web.Services.Protocols.WebClientAsyncResult.WaitForResponse()
at System.Web.Services.Protocols.WebClientProtocol.EndSend(IAsyncResult asyncResult, Object& internalAsyncState, Stream& responseStream)
at System.Web.Services.Protocols.SoapHttpClientProtocol.InvokeAsyncCallback(IAsyncResult result)
--------------------------------------
Additional Information
Machine Name: DESKTOP-6E6EVRB
Assembly: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Application Domain: DriverSupport.exe
Thread Identity: DESKTOP-6E6EVRB\bloom
Thread Name:
Windows Identity: DESKTOP-6E6EVRB\bloom
Process Name:
Description: Timestamp: 11/10/2019 3:46:37 PM
Message: An exception occured and was caught: DriverDetectiveException
---------Exception Information----------
Local Time: 11/10/2019 10:46:37 AM
Type: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: Not available
Target Site:
Stack Trace: Not available
----------Inner Exception Information----------
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: System
Target Site: System.IO.Stream GetRequestStream(System.Net.TransportContext ByRef)
Stack Trace: at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)
at System.Net.HttpWebRequest.GetRequestStream()
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at DriversHQ.DriverDetective.Client.Communication.WSMisc201112.MiscService.GetWhiteLabelMetaData()
at DriversHQ.DriverDetective.Client.Communication.MiscComm.GetWhiteLabelMetaData(Guid uuID, Guid registrationKey)
at DriversHQ.DriverDetective.Client.h.bg()
at DriversHQ.DriverDetective.Client.h.be()
--------------------------------------
Additional Information
Machine Name: DESKTOP-6E6EVRB
Assembly: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Application Domain: DriverSupport.exe
Thread Identity: DESKTOP-6E6EVRB\bloom
Thread Name:
Windows Identity: DESKTOP-6E6EVRB\bloom
Process Name:
Description: Timestamp: 11/10/2019 3:45:37 PM
Message: An exception occured and was caught: WebException
---------Exception Information----------
Local Time: 11/10/2019 10:45:37 AM
Type: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: System.Web.Services
Target Site: System.Net.WebResponse WaitForResponse()
Stack Trace: at System.Web.Services.Protocols.WebClientAsyncResult.WaitForResponse()
at System.Web.Services.Protocols.WebClientProtocol.EndSend(IAsyncResult asyncResult, Object& internalAsyncState, Stream& responseStream)
at System.Web.Services.Protocols.SoapHttpClientProtocol.InvokeAsyncCallback(IAsyncResult result)
--------------------------------------
Additional Information
Machine Name: DESKTOP-6E6EVRB
Assembly: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Application Domain: DriverSupport.exe
Thread Identity: DESKTOP-6E6EVRB\bloom
Thread Name:
Windows Identity: DESKTOP-6E6EVRB\bloom
Process Name:
Description: Timestamp: 11/10/2019 3:45:37 PM
Message: An exception occured and was caught: DriverDetectiveException
---------Exception Information----------
Local Time: 11/10/2019 10:45:37 AM
Type: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: Not available
Target Site:
Stack Trace: Not available
----------Inner Exception Information----------
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: System
Target Site: System.IO.Stream GetRequestStream(System.Net.TransportContext ByRef)
Stack Trace: at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)
at System.Net.HttpWebRequest.GetRequestStream()
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at DriversHQ.DriverDetective.Client.Communication.WSMisc201112.MiscService.GetWhiteLabelMetaData()
at DriversHQ.DriverDetective.Client.Communication.MiscComm.GetWhiteLabelMetaData(Guid uuID, Guid registrationKey)
at DriversHQ.DriverDetective.Client.h.bg()
at DriversHQ.DriverDetective.Client.h.be()
--------------------------------------
Additional Information
Machine Name: DESKTOP-6E6EVRB
Assembly: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Application Domain: DriverSupport.exe
Thread Identity: DESKTOP-6E6EVRB\bloom
Thread Name:
Windows Identity: DESKTOP-6E6EVRB\bloom
Process Name:
Description: Timestamp: 11/10/2019 3:44:37 PM
Message: An exception occured and was caught: WebException
---------Exception Information----------
Local Time: 11/10/2019 10:44:37 AM
Type: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: System.Web.Services
Target Site: System.Net.WebResponse WaitForResponse()
Stack Trace: at System.Web.Services.Protocols.WebClientAsyncResult.WaitForResponse()
at System.Web.Services.Protocols.WebClientProtocol.EndSend(IAsyncResult asyncResult, Object& internalAsyncState, Stream& responseStream)
at System.Web.Services.Protocols.SoapHttpClientProtocol.InvokeAsyncCallback(IAsyncResult result)
--------------------------------------
Additional Information
Machine Name: DESKTOP-6E6EVRB
Assembly: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Application Domain: DriverSupport.exe
Thread Identity: DESKTOP-6E6EVRB\bloom
Thread Name:
Windows Identity: DESKTOP-6E6EVRB\bloom
Process Name:
Description: Timestamp: 11/10/2019 3:44:37 PM
Message: An exception occured and was caught: DriverDetectiveException
---------Exception Information----------
Local Time: 11/10/2019 10:44:37 AM
Type: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: Not available
Target Site:
Stack Trace: Not available
----------Inner Exception Information----------
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: System
Target Site: System.IO.Stream GetRequestStream(System.Net.TransportContext ByRef)
Stack Trace: at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)
at System.Net.HttpWebRequest.GetRequestStream()
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at DriversHQ.DriverDetective.Client.Communication.WSMisc201112.MiscService.GetWhiteLabelMetaData()
at DriversHQ.DriverDetective.Client.Communication.MiscComm.GetWhiteLabelMetaData(Guid uuID, Guid registrationKey)
at DriversHQ.DriverDetective.Client.h.bg()
at DriversHQ.DriverDetective.Client.h.be()
--------------------------------------
Additional Information
Machine Name: DESKTOP-6E6EVRB
Assembly: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Application Domain: DriverSupport.exe
Thread Identity: DESKTOP-6E6EVRB\bloom
Thread Name:
Windows Identity: DESKTOP-6E6EVRB\bloom
Process Name:
Description: Timestamp: 11/10/2019 3:43:37 PM
Message: An exception occured and was caught: WebException
---------Exception Information----------
Local Time: 11/10/2019 10:43:37 AM
Type: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: System.Web.Services
Target Site: System.Net.WebResponse WaitForResponse()
Stack Trace: at System.Web.Services.Protocols.WebClientAsyncResult.WaitForResponse()
at System.Web.Services.Protocols.WebClientProtocol.EndSend(IAsyncResult asyncResult, Object& internalAsyncState, Stream& responseStream)
at System.Web.Services.Protocols.SoapHttpClientProtocol.InvokeAsyncCallback(IAsyncResult result)
--------------------------------------
Additional Information
Machine Name: DESKTOP-6E6EVRB
Assembly: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Application Domain: DriverSupport.exe
Thread Identity: DESKTOP-6E6EVRB\bloom
Thread Name:
Windows Identity: DESKTOP-6E6EVRB\bloom
Process Name:
Description: Timestamp: 11/10/2019 3:43:37 PM
Message: An exception occured and was caught: DriverDetectiveException
---------Exception Information----------
Local Time: 11/10/2019 10:43:37 AM
Type: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: Not available
Target Site:
Stack Trace: Not available
----------Inner Exception Information----------
Message: The remote name could not be resolved: 'webservices.drivershq.com'
Source: System
Target Site: System.IO.Stream GetRequestStream(System.Net.TransportContext ByRef)
Stack Trace: at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)
at System.Net.HttpWebRequest.GetRequestStream()
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at DriversHQ.DriverDetective.Client.Communication.WSMisc201112.MiscService.GetWhiteLabelMetaData()
at DriversHQ.DriverDetective.Client.Communication.MiscComm.GetWhiteLabelMetaData(Guid uuID, Guid registrationKey)
at DriversHQ.DriverDetective.Client.h.bg()
at DriversHQ.DriverDetective.Client.h.be()
--------------------------------------
Additional Information
Machine Name: DESKTOP-6E6EVRB
Assembly: ExceptionLogging, Version=4.0.0.98, Culture=neutral, PublicKeyToken=null
Application Domain: DriverSupport.exe
Thread Identity: DESKTOP-6E6EVRB\bloom
Thread Name:
Windows Identity: DESKTOP-6E6EVRB\bloom
Process Name:
System errors:
=============
Error: (11/07/2019 12:59:18 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 12:29:22 PM on 11/7/2019 was unexpected.
Description: An attempt to clear a packet coalescing filter on the network adapter with hardware address 10-4A-7D-A8-1A-D8 has failed (IPv4 0xc023002f 1).
Description: The Connected User Experiences and Telemetry service terminated unexpectedly. It has done this 3 time(s).
Description: The Connected User Experiences and Telemetry service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
Description: The Connected User Experiences and Telemetry service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
Description: An attempt to clear a packet coalescing filter on the network adapter with hardware address 10-4A-7D-A8-1A-D8 has failed (IPv4 0xc023002f 1).
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9WZDNCRFJ364-MICROSOFT.SKYPEAPP.
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9WZDNCRFJ364-MICROSOFT.SKYPEAPP.
Windows Defender:
===================================
Date: 2019-11-06 13:00:04.376
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {B5DEDDA7-AFAC-498A-98E1-7370507512F6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {9F980400-1276-4826-AAB0-8AC750B879F3}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {E5694C49-F7AF-4967-A219-DDDDEE5D5FAD}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {33BFF4B1-F14C-4145-BD6A-A86B91D3DFED}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {02D27CC6-42DE-44A6-8CBB-A83575969E22}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.1615.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.1615.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.1615.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.1615.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.1615.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Motherboard: Hewlett-Packard 2253
Processor: Intel® Core i7-4810MQ CPU @ 2.80GHz
Percentage of memory in use: 24%
Total physical RAM: 16265.11 MB
Available physical RAM: 12224.37 MB
Total Virtual: 18697.11 MB
Available Virtual: 14610.93 MB
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 3F1459EC)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=238.1 GB) - (Type=07 NTFS)