ADDITION.TXT:
==
Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-11-2015
Ran by Igor (2015-11-11 00:34:52)
Running from C:\Users\Igor\Desktop
Windows 7 Professional Service Pack 1 (X64) (2013-11-17 10:33:39)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-233968585-743656622-1246094418-500 - Administrator - Disabled)
Guest (S-1-5-21-233968585-743656622-1246094418-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-233968585-743656622-1246094418-1005 - Limited - Enabled)
Igor (S-1-5-21-233968585-743656622-1246094418-1000 - Administrator - Enabled) => C:\Users\Igor
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Kaspersky Total Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Total Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Total Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-233968585-743656622-1246094418-1000\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat 8 Professional - Croatian, Ukrainien, Russian, Turkish (HKLM-x32\...\Adobe Acrobat 8 Professional - Croatian, Ukrainien, Russian, Turkish) (Version: 8.0.0 - Adobe Systems)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.3.0.151 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.1.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AnVir Task Manager (HKLM-x32\...\AnVir Task Manager) (Version: - AnVir Software)
AOMEI Partition Assistant Standard Edition 5.6 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.)
Apple Mobile Device Support (HKLM\...\{9B3B4129-220E-42C7-9C5B-91C65E0885B4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Applen ohjelmatuki (32-bittinen) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Applen ohjelmatuki (64-bittinen) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.2.6.0 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.2.6.0 - ASUSTek COMPUTER INC.) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.7.2.11 - Canon Inc.)
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.3.9 - Canon Inc.)
Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.5.0.7 - Canon Inc.)
Canon MOV Encoder (HKLM-x32\...\Canon MOV Encoder) (Version: 1.3.0.3 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.4.0.8 - Canon Inc.)
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.4.0.7 - Canon Inc.)
Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC8) (Version: 8.1.0.11 - Canon Inc.)
Canon Utilities Movie Uploader for YouTube (HKLM-x32\...\MovieUploaderForYouTube) (Version: 1.0.0.11 - Canon Inc.)
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.5.0.14 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.3.0.4 - Canon Inc.)
Capture One 8.3 (HKLM\...\CaptureOne8_is1) (Version: 8.3.1.23 - Phase One A/S)
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
ClearType Switch (HKLM-x32\...\ClearType Switch) (Version: 1.1 - KARPOLAN)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CustomerResearchQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
DeviceDiscovery (x32 Version: 90.0.146.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
EPUB File Reader (HKLM-x32\...\{818C5857-5C74-4CAC-9F43-E5597086852D}_is1) (Version: - )
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
FastStone Image Viewer 4.6 (HKLM-x32\...\FastStone Image Viewer) (Version: 4.6 - FastStone Soft)
Foxit PhantomPDF (HKLM-x32\...\{E85A6409-DA6F-49EE-B023-49E3F2F08956}) (Version: 5.4.3.1106 - Foxit Corporation)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
HP Color LaserJet CP1210 Series (HKLM\...\HP Color LaserJet CP1210 Series) (Version: - )
HP Color LaserJet CP1210 Series Toolbox (HKLM\...\{F323676A-B911-4B57-827F-32D02DCD4971}) (Version: 1.0.21 - Hewlett-Packard)
HP Customer Participation Program 9.0 (HKLM\...\HPExtendedCapabilities) (Version: 9.0 - HP)
HP LaserJet M1522 MFP Series 4.2 (HKLM\...\{C8A37F1F-E13B-48ae-93F8-4669264969F9}) (Version: 4.2 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPCarePackCore (HKLM-x32\...\{7B02BF60-796D-4616-908B-B31A63CFDEFB}) (Version: 10.0.0.1 - Hewlett-Packard)
HPCarePackProducts (x32 Version: 2.0.0.1 - HP) Hidden
hppFaxDrvM1522 (x32 Version: 003.100.00001 - Hewlett-Packard) Hidden
hppFaxUtility (x32 Version: 000.105.00107 - Название организации) Hidden
hppFonts (x32 Version: 001.001.00056 - Hewlett-Packard) Hidden
hppLaserJetService (x32 Version: 001.300.00005 - Hewlett-Packard) Hidden
hppLJM1522 (x32 Version: 002.101.00002 - Hewlett-Packard) Hidden
hppManualsM1522 (x32 Version: 002.103.00002 - Название организации) Hidden
hppScanTo (x32 Version: 002.102.00003 - Название организации) Hidden
hppSendFaxM1522 (x32 Version: 003.000.00001 - Hewlett-Packard) Hidden
hppTLBXFXM1522 (x32 Version: 001.005.00009 - Hewlett-Packard) Hidden
hppusgM1522 (x32 Version: 000.000.00004 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}) (Version: 2.2.0.0000 - Hewlett Packard Development Company L.P.)
hpzTLBXFX (x32 Version: 005.013.00185 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
Image Data Converter (HKLM-x32\...\{87998E4E-6D9C-411B-AAE9-B8523FFE357D}) (Version: 4.2.04.17271 - Sony Corporation)
iTunes (HKLM\...\{5D239A92-31A4-4FCA-967D-F9EA8E1FDF6A}) (Version: 12.1.2.27 - Apple Inc.)
Kaspersky Total Security (HKLM-x32\...\InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}) (Version: 15.0.1.415 - Kaspersky Lab)
Kaspersky Total Security (x32 Version: 15.0.1.415 - Kaspersky Lab) Hidden
K-Lite Codec Pack 10.1.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.1.5 - )
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MarketResearch (x32 Version: 90.0.146.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office - профессиональный выпуск версии 2003 (HKLM-x32\...\{90110419-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 en-US)) (Version: 42.0 - Mozilla)
Nettia (HKLM-x32\...\Nettia) (Version: 3.7 - Nettia)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 358.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 358.87 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.15.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.15.54 - NVIDIA Corporation)
NVIDIA Graphics Driver 358.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.87 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OpenOffice 4.0.1 (HKLM-x32\...\{47F460DA-D1BE-4D85-8DF2-AA1F31D3445F}) (Version: 4.01.9714 - Apache Software Foundation)
PlayMemories Camera Apps Downloader (HKLM-x32\...\{E4B95A36-0EF2-44C6-B939-5B3DBBC34502}) (Version: 1.1.1975.475 - Sony Network Entertainment International LLC)
Product_Min_QFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
SHIELD Streaming (Version: 4.1.500 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.15.54 - NVIDIA Corporation) Hidden
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
The Bat! Professional v5.0.36 (HKLM-x32\...\{B013FB80-453A-4AB0-8DD9-D13C1EB97AD6}) (Version: 5.0.36 - Ritlabs)
Total Commander (HKLM-x32\...\Total Commander) (Version: - )
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
WebReg (x32 Version: 90.0.146.000 - Hewlett-Packard) Hidden
Venta Fax & Voice 7.1 (бизнес-версия) (удаление/восстановление) (HKLM-x32\...\Venta Fax & Voice 7.1 (бизнес-версия)) (Version: 7.1 - Venta Association)
Viber (HKU\S-1-5-21-233968585-743656622-1246094418-1000\...\{b1142ab5-4e7c-4fa1-8734-115e5d1e1933}) (Version: 5.4.0.1661 - Viber Media Inc.)
Viber (x32 Version: 5.4.0.1661 - Viber Media Inc.) Hidden
WinDjView 2.0.2 (HKLM\...\WinDjView) (Version: 2.0.2 - Andrew Zhezherun)
Windows Driver Package - Leaf Imaging Ltd. Image (12/03/2014 1.2.0.0) (HKLM\...\B758007C752D28F7C3542875CEEBDADCAE5941AE) (Version: 12/03/2014 1.2.0.0 - Leaf Imaging Ltd.)
Windows Driver Package - Phase One / Mamiya V-Grip USB Driver (12/03/2014 1.2.0.0) (HKLM\...\3F504CC0B024052107934E093CC26DA720256A7A) (Version: 12/03/2014 1.2.0.0 - Phase One / Mamiya)
Windows Driver Package - Phase One A/S (WinUSB) USBDevice (12/03/2014 1.13.0.0) (HKLM\...\7C6570ABBEB2F08EFBC23ED7925AE72DA6167BD8) (Version: 12/03/2014 1.13.0.0 - Phase One A/S)
WinZip (HKLM-x32\...\WinZip) (Version: 9.0 (6028) - WinZip Computing, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Архиватор WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
На подпись! Free (удаление/восстановление) (HKLM-x32\...\На подпись! Free) (Version: 2.1 - Venta Association)
Пакет обеспечения совместимости для выпуска 2007 системы Microsoft Office (HKLM-x32\...\{90120000-0020-0419-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-233968585-743656622-1246094418-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Restore Points =========================
03-11-2015 00:14:38 Scheduled Checkpoint
10-11-2015 00:21:14 Scheduled Checkpoint
10-11-2015 19:22:41 Removed Java 8 Update 65
10-11-2015 20:55:41 Removed HP USB Disk Storage Format Tool
10-11-2015 20:57:37 Removed System Requirements Lab
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2015-11-10 19:08 - 00000768 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {2A45DE38-11B0-4326-8464-D4F9FFA30FE7} - System32\Tasks\AnVir Task Manager => D:\Program Files (x86)\AnVir Task Manager\anvir.exe [2013-07-16] (AnVir Software hxxp://
www.anvir.net)
Task: {41159740-E55C-47F9-8863-08F6F6ED2C9B} - System32\Tasks\AdobeAAMUpdater-1.0-Igor-IRIS-PC-Igor => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-09-04] (Adobe Systems Incorporated)
Task: {5B6B1415-3722-4B42-9CF3-B0BCAC185D13} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {7EB95912-1F12-4FC7-8FF3-FB719A0DAE1A} - System32\Tasks\{85BA16A7-BF5B-4887-93F7-BDA672A91D0C} => Firefox.exe hxxp://ui.skype.com/ui/0/7.8.0.102/en/go/help.faq.installer?LastError=1618
Task: {864FEC95-9970-4EF8-9BA0-3D3AFE48337D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {AD9CC35B-2A99-43C1-83B0-BBBD31F491A8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {BAC6D5E4-F3A5-4869-A4EF-DEC4F028AEDA} - System32\Tasks\HP WEP => C:\Program Files (x86)\HP\Dfawep\bin\hpbdfawep.exe [2007-04-25] ()
Task: {C52138B6-8674-4317-B054-55E1D7E4988E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {C77BC7D1-101B-46F0-9BBD-D7B446AFE1B3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP WEP.job => C:\Program Files (x86)\HP\Dfawep\bin\hpbdfawep.exeIgor$Task for execution of hpbdfawep.exe
==================== Loaded Modules (Whitelisted) ==============
2013-11-17 16:32 - 2015-11-02 15:22 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-11-18 13:36 - 2013-09-04 16:29 - 00024056 _____ () C:\Windows\system32\vntmon64.dll
2013-11-19 08:41 - 2012-12-12 13:29 - 00059520 _____ () C:\Windows\system32\vsign.dll
2015-09-11 18:02 - 2015-09-11 18:02 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-07-11 18:38 - 2015-06-22 20:38 - 00245760 _____ () D:\Program Files\Phase One\Capture One 8\WIC\WIC64\P1.WIC.NativeComWrapper.dll
2015-07-11 18:38 - 2015-06-19 12:41 - 46870528 _____ () D:\Program Files\Phase One\Capture One 8\WIC\WIC64\ImgCoreDll.dll
2015-07-11 18:38 - 2015-06-19 12:41 - 00771072 _____ () D:\Program Files\Phase One\Capture One 8\WIC\WIC64\OpenCoreDll.dll
2015-11-02 14:22 - 2015-11-02 14:22 - 51657424 _____ () C:\Users\Igor\AppData\Local\Viber\Viber.exe
2007-08-31 07:59 - 2007-08-31 07:59 - 00036864 _____ () C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe
2015-01-20 22:35 - 2015-01-20 22:35 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-08-30 17:12 - 2014-08-30 17:12 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\kpcengine.2.3.dll
2015-03-30 20:08 - 2015-10-12 05:05 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-11-02 14:16 - 2015-11-02 14:16 - 00089088 _____ () C:\Users\Igor\AppData\Local\Viber\qfacebook.dll
2015-11-02 14:16 - 2015-11-02 14:16 - 00389632 _____ () C:\Users\Igor\AppData\Local\Viber\imageformats\qsvg.dll
2015-09-29 04:58 - 2015-09-29 04:58 - 00012288 _____ () C:\Users\Igor\AppData\Local\Viber\QtQuick.2\qtquick2plugin.dll
2015-09-29 17:25 - 2015-09-29 17:25 - 00690176 _____ () C:\Users\Igor\AppData\Local\Viber\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-09-29 17:26 - 2015-09-29 17:26 - 00057856 _____ () C:\Users\Igor\AppData\Local\Viber\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-09-29 04:58 - 2015-09-29 04:58 - 00012288 _____ () C:\Users\Igor\AppData\Local\Viber\QtQuick\Window.2\windowplugin.dll
2015-09-29 04:58 - 2015-09-29 04:58 - 00012288 _____ () C:\Users\Igor\AppData\Local\Viber\QtQml\Models.2\modelsplugin.dll
2015-09-29 05:04 - 2015-09-29 05:04 - 00184320 _____ () C:\Users\Igor\AppData\Local\Viber\QtMultimedia\declarative_multimedia.dll
2015-09-29 04:58 - 2015-09-29 04:58 - 00044032 _____ () C:\Users\Igor\AppData\Local\Viber\QtQml\StateMachine\qtqmlstatemachine.dll
2015-09-29 17:34 - 2015-09-29 17:34 - 00425984 _____ () C:\Users\Igor\AppData\Local\Viber\QtLocation\declarative_location.dll
2015-09-29 05:03 - 2015-09-29 05:03 - 00065024 _____ () C:\Users\Igor\AppData\Local\Viber\QtPositioning\declarative_positioning.dll
2007-08-31 07:59 - 2007-08-31 07:59 - 00057344 _____ () C:\Program Files (x86)\HP\HP UT\bin\HPUsageTracking.dll
2007-08-31 07:59 - 2007-08-31 07:59 - 00065536 _____ () C:\Program Files (x86)\HP\HP UT\bin\HPTools.dll
2007-08-31 07:59 - 2007-08-31 07:59 - 00114688 _____ () C:\Program Files (x86)\HP\HP UT\bin\HPToolkit.dll
2007-08-31 07:59 - 2007-08-31 07:59 - 00036864 _____ () C:\Program Files (x86)\HP\HP UT\bin\Enumeration.dll
2007-08-31 07:59 - 2007-08-31 07:59 - 00016384 _____ () C:\Program Files (x86)\HP\HP UT\bin\HPStreamsInterface.dll
2014-08-30 17:12 - 2014-12-06 14:09 - 00459048 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\content_blocker@kaspersky.com\npcontentblocker.dll
2014-08-30 17:12 - 2014-12-06 14:09 - 00332584 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\online_banking@kaspersky.com\nponlinebanking.dll
2014-08-30 17:12 - 2014-12-06 14:09 - 00587048 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com\npvkplugin.dll
2015-10-23 15:18 - 2015-10-23 15:18 - 17599688 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll
2015-11-10 22:17 - 2015-10-05 18:18 - 00778752 _____ () D:\Program Files (x86)\Steam\SDL2.dll
2015-11-10 22:17 - 2015-07-03 18:12 - 04962816 _____ () D:\Program Files (x86)\Steam\v8.dll
2015-11-10 22:17 - 2015-07-03 18:12 - 01556992 _____ () D:\Program Files (x86)\Steam\icui18n.dll
2015-11-10 22:17 - 2015-07-03 18:12 - 01187840 _____ () D:\Program Files (x86)\Steam\icuuc.dll
2015-11-10 22:17 - 2015-11-10 04:44 - 02541648 _____ () D:\Program Files (x86)\Steam\video.dll
2015-11-10 22:17 - 2015-09-24 02:33 - 02549248 _____ () D:\Program Files (x86)\Steam\libavcodec-56.dll
2015-11-10 22:17 - 2015-09-24 02:33 - 00442880 _____ () D:\Program Files (x86)\Steam\libavutil-54.dll
2015-11-10 22:17 - 2015-09-24 02:33 - 00491008 _____ () D:\Program Files (x86)\Steam\libavformat-56.dll
2015-11-10 22:17 - 2015-09-24 02:33 - 00332800 _____ () D:\Program Files (x86)\Steam\libavresample-2.dll
2015-11-10 22:17 - 2015-09-24 02:33 - 00485888 _____ () D:\Program Files (x86)\Steam\libswscale-3.dll
2015-11-10 22:17 - 2015-11-10 04:44 - 00806992 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-11-10 22:17 - 2015-11-04 00:00 - 00201728 _____ () D:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-11-10 22:17 - 2015-10-09 00:20 - 45010208 _____ () D:\Program Files (x86)\Steam\bin\libcef.dll
2015-11-10 22:17 - 2015-09-25 01:56 - 00119208 _____ () D:\Program Files (x86)\Steam\winh264.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-233968585-743656622-1246094418-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Igor\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 85.25.237.162 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{B510F59E-EE49-4A3D-8DCD-DC2BD175DBC2}] => (Allow) D:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{0DABC831-94CD-4FB1-86B6-C9402BA7774F}] => (Allow) C:\Users\Igor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B45EBF14-DE9C-49A0-ACDB-4BF745EF469C}] => (Allow) C:\Users\Igor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B5761AF6-DEF5-43E5-B435-7F82563A0299}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7744700B-5069-45A5-9EC7-A44D524C577E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2770D470-3A32-4ADC-A750-E362A565EF19}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A2AFC35A-221C-48A3-A22A-9275A5D641B2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CE0865B3-ACE2-4FD1-BE6E-9F8CB565766C}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{32A2EEA1-999F-4AE2-94AF-CB188356121C}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{809468D3-EC9D-47AB-B83A-BFF552FA13A0}] => (Allow) D:\VentaFax & Voice 5\vft38m.exe
FirewallRules: [{D49119D8-95E1-4ACF-9BD1-0037166F9645}] => (Allow) D:\VentaFax & Voice 5\vft38m.exe
FirewallRules: [{930AD622-B330-4BD9-9114-F26CE1A9A129}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{86779A56-F327-447A-9B9D-FA8B73FE8C94}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{DB2E751C-F8B8-483F-971F-8F0750042032}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{0F00C02C-76F9-43F8-9209-60536984B654}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{41288245-BF33-41E4-905A-B0FE1C02E9E3}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{ED801AEF-9662-43C4-AE30-C213E9B7903D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{3AA7F01A-6FC7-4F58-8A8D-B763CE0356B9}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Loadout\Loadout.exe
FirewallRules: [{AD7AA26B-0614-487F-B10E-36E29BDBE4D6}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Loadout\Loadout.exe
FirewallRules: [{54ECB3B0-A6BF-40BA-9699-0A4163301883}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{2C4CD533-7A78-40EF-AA31-D7B28F6FCA0D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4AF61EA0-F2E4-490F-9262-A6B3F8F75EB4}] => (Allow) C:\Users\Igor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{008224FA-FC5D-4566-92C4-690B5BD025AF}] => (Allow) C:\Users\Igor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CF27760B-22B4-4F3E-B799-708C97E8875F}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{84446EEC-2F60-499A-9F61-D6A4D3B7EA98}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{7652228D-1FF5-4341-B58D-BEE369C9D283}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{59832A7B-A927-4B2B-9F22-E6CD2DD5B1FF}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{EB215398-0471-44C9-9310-913EE1EA7A81}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{7D1536C7-6FB1-4888-A17C-7AB64604CCBF}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{12640893-31D1-4986-97BC-2CC9FDD1B45E}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{75AAE7B1-C61F-4259-8EF3-529E1710D367}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{720277D1-6231-4544-AFF4-35598A851270}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{594FCE1B-0477-4915-BBA8-5BFB7B1FE24A}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{D4757CD7-A426-49FB-B83D-F66575AC50C0}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [{E60F8AE5-05DF-4B30-97BD-600A598DBCC0}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [{A3D07026-8092-4D83-8CA4-A95856B06F14}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6462475E-95A2-453C-89FC-CD269B3FDCF7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{56CF05A1-5635-4411-A1EA-C5AE04355A01}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{0A7F1E5C-53CF-4A59-B5FB-D18425310921}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3AA6C5E6-2C9E-40D6-AB86-90D636E4EC1F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{6D3B8DC5-5745-4910-A1E7-095CF60D6B4A}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{0DAA0C9F-4F9C-4485-A2E2-2652E32F0746}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{C9B23A32-A3BF-48D8-A5BA-7F0175ADD57D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{10D65F0A-724F-42A5-AFAE-1F00DC1C71BC}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Loadout Beta\Loadout.exe
FirewallRules: [{C867B417-1B52-4CEB-BA3B-0CB1311ECCA5}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Loadout Beta\Loadout.exe
FirewallRules: [TCP Query User{93E82EA4-C52E-4976-B6B8-7D7D6146F835}D:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe
FirewallRules: [UDP Query User{30C6A54C-9E92-4651-9699-1CCBB3B23705}D:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe
FirewallRules: [{F2D00076-9E2C-4B10-9119-0D8B21BFEACD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{44C5475B-BE4D-47BF-9F2A-7E6477E2004F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FB06F1A1-B568-45C1-9EC1-B875B5780D77}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{92488EEE-5306-4762-A810-2F655486A913}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{24FD0E64-9BCE-4341-B4F7-75942DBBB1ED}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{2CF38D1E-4089-41BF-ACA1-517B6CCDA114}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{D3950748-57FF-4476-B52F-E5544DADCA5B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{69A6639D-1E97-4DFD-BC28-D42B101D5B44}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{78540F45-B3CA-4986-8A2E-326045B9BA67}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\Blacklist_Launcher.exe
FirewallRules: [{D00F9325-02C2-4BDB-AA68-F2793C07A061}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\Blacklist_Launcher.exe
FirewallRules: [{CDD02707-FA97-4B2F-BD20-E2874BB82DF6}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{B8F9D079-634B-4491-927A-59B79701846B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{1FB53C63-03FE-4315-B878-8391AB4174AF}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{77E322F7-EA5E-433B-A381-F7B5752A8615}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{722E372B-4671-43AE-B75C-90988DEDCB64}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\gu.exe
FirewallRules: [{458986E2-6A0A-499D-9FEA-006521B1600B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\gu.exe
FirewallRules: [{49D40F0F-78C5-44E1-8EC7-FA1A1958E76E}] => (Allow) C:\Program Files (x86)\Simple Port Forwarding\spf.exe
FirewallRules: [{85EAA8D9-AE5B-437C-A1FF-F343A99F2E91}] => (Allow) C:\Program Files (x86)\Simple Port Forwarding\spf.exe
FirewallRules: [{CF01DD8E-9B1C-4F8A-8D27-9D7EED33C1B2}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{3415114E-1423-4560-8BE2-F22EB7184C37}] => (Allow) C:\Program Files (x86)\HP\hp laserjet m1522\Fax Config utility1.exe
FirewallRules: [{6527AA6F-6448-42ED-B6DA-4CE87EEE185F}] => (Allow) C:\Program Files (x86)\HP\hp laserjet m1522\Fax Config utility1.exe
FirewallRules: [{DB2072C4-3D9E-4783-B09B-F3114A9105EC}] => (Allow) D:\Program Files (x86)\Nettia\Nettia.exe
FirewallRules: [{115C712A-84B0-4F54-BDE3-D15733E58368}] => (Allow) D:\Program Files (x86)\Nettia\Nettia.exe
FirewallRules: [{912AF027-EC0C-4612-90B7-B8DB77EADA29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B711A9A4-2A19-4E0F-9F54-C455820D6A74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F7F084A2-3F26-4BFA-9FB1-07B33C2F0DD8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{D0A6DBBE-0800-48C8-9335-B2B6F6895E33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8B250A2B-FF50-4865-AEAE-514D8454A2D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{133ADC28-9238-4890-8C9D-0761915C05CF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{EC51FF52-A77E-4C98-8DF0-4F6DCD24D9E9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5294B591-8236-44E1-9DD6-3F9153E9DAF1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C29C159D-1835-4969-BAC5-964443163E7A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B1F513C3-75D2-4A58-875B-1F002AFEAF02}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{49CFD433-D513-400F-B762-8B0F90F91407}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/10/2015 10:28:00 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (11/10/2015 08:19:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program RogueKiller.exe version 10.11.5.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1e04
Start Time: 01d11be3c0cb7c0b
Termination Time: 0
Application Path: C:\Users\Igor\Desktop\RogueKiller.exe
Report Id:
Error: (11/10/2015 07:47:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program RogueKiller.exe version 10.11.5.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1548
Start Time: 01d11bdf3b34307f
Termination Time: 4
Application Path: C:\Users\Igor\Desktop\RogueKiller.exe
Report Id:
Error: (11/10/2015 07:27:16 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (11/10/2015 07:18:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/10/2015 07:17:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Creative Cloud.exe, version: 3.3.0.151, time stamp: 0x55fab2fa
Faulting module name: ContainerUI.dll, version: 3.3.0.151, time stamp: 0x55fab383
Exception code: 0xc0000005
Fault offset: 0x00016870
Faulting process id: 0x1b1c
Faulting application start time: 0xCreative Cloud.exe0
Faulting application path: Creative Cloud.exe1
Faulting module path: Creative Cloud.exe2
Report Id: Creative Cloud.exe3
Error: (11/10/2015 07:08:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 42.0.0.5780, time stamp: 0x5632d0a4
Faulting module name: mozglue.dll, version: 42.0.0.5780, time stamp: 0x5632ba58
Exception code: 0x80000003
Fault offset: 0x0000ed50
Faulting process id: 0x1698
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Error: (11/10/2015 07:08:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 42.0.0.5780, time stamp: 0x5632d0a4
Faulting module name: mozglue.dll, version: 42.0.0.5780, time stamp: 0x5632ba58
Exception code: 0x80000003
Fault offset: 0x0000ed50
Faulting process id: 0x274c
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Error: (11/10/2015 07:08:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 42.0.0.5780, time stamp: 0x5632d0a4
Faulting module name: mozglue.dll, version: 42.0.0.5780, time stamp: 0x5632ba58
Exception code: 0x80000003
Fault offset: 0x0000ed50
Faulting process id: 0xd24
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Error: (11/10/2015 06:44:27 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
System errors:
=============
Error: (11/10/2015 10:17:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053
Error: (11/10/2015 10:17:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
Error: (11/10/2015 08:15:20 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\System32\drivers\TrueSight.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (11/10/2015 07:49:25 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\System32\drivers\TrueSight.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (11/10/2015 07:47:55 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\System32\drivers\TrueSight.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (11/10/2015 07:42:57 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\System32\drivers\TrueSight.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (11/10/2015 06:58:47 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\System32\drivers\TrueSight.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (11/10/2015 06:57:34 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\System32\drivers\TrueSight.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (11/10/2015 06:43:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The NVIDIA Stereoscopic 3D Driver Service service terminated unexpectedly. It has done this 1 time(s).
Error: (11/10/2015 06:33:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Software Protection service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
CodeIntegrity:
===================================
Date: 2015-04-16 23:50:05.534
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-16 23:50:05.533
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-16 23:50:05.531
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-16 23:50:05.528
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-16 23:50:05.527
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-16 23:50:05.526
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-16 00:05:53.155
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-16 00:05:53.154
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-16 00:05:53.153
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-16 00:05:53.150
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-3240 CPU @ 3.40GHz
Percentage of memory in use: 50%
Total physical RAM: 8146.92 MB
Available physical RAM: 4030.54 MB
Total Virtual: 16292.04 MB
Available Virtual: 12329.07 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.69 GB) (Free:37.86 GB) NTFS
Drive d: (Work) (Fixed) (Total:931.51 GB) (Free:158.98 GB) NTFS
Drive f: (KINGSTON) (Removable) (Total:14.92 GB) (Free:7.74 GB) NTFS
Drive g: (ru) (CDROM) (Total:108.77 GB) (Free:0 GB) UDF
Drive I: () (Fixed) (Total:149.98 GB) (Free:12.6 GB) FAT32
Drive z: (My Book) (Fixed) (Total:931.51 GB) (Free:105.74 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 7E3E5925)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 93C20E31)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 14.9 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=14.9 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (Size: 931.5 GB) (Disk ID: E8900690)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================