Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Another dllhost com suragate issue


  • This topic is locked This topic is locked
14 replies to this topic

#1 Uncle Gary

Uncle Gary

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 03 November 2014 - 08:14 PM

I am having the same issue as in the "dllhost com suragate" thread. I am new to this so I sent deeprybka a message asking what I should do and he asked me to "please open a new thread". I have downloaded and ran Combofix.exe. The ComboFix.txt file is attached. Please let me know what the next steps should be. Thank you! Attached File  ComboFix.txt   23.17KB   1 downloads



BC AdBot (Login to Remove)

 


#2 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:15 PM

Posted 06 November 2014 - 04:08 PM

Hi & :welcome: to Bleeping Computer Forums!
My name is Jürgen and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully: :exclame:
  • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
  • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.
  • If I don't reply within 24 hours please PM me!
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
Step 1
logo.png
Please download Powelikscleaner (by ESET) and save it to your Desktop.
  • Double-click the 3.png to start the tool.
  • Read the terms of the End-user license agreement and click Agree if you agree to them.
  • The tool will run automatically. If the cleaner finds a Poweliks infection, press the Y key on your keyboard to remove it.
  • If Poweliks was detected "Win32/Poweliks was successfully removed from your system" will be displayed. Press any key to exit the tool and reboot your PC.
  • The tool will produce a log in the same directory the tool was run from.
  • Please copy and paste the log in your next reply.
1.png
2.png

Step 2

Please run a FRST scan. This will help us diagnose your problem.

frst.pngfrstscan.png
Please download Farbar Recovery Scan Tool and save it to your Desktop.
(If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)
  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#3 Uncle Gary

Uncle Gary
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 06 November 2014 - 09:10 PM

[2014.11.06 20:24:59.206] - Begin
[2014.11.06 20:24:59.206] -
[2014.11.06 20:24:59.207] -     ....................................
[2014.11.06 20:24:59.207] -   ..::::::::::::::::::....................
[2014.11.06 20:24:59.210] -   .::EEEEEE:::SSSSSS::..EEEEEE..TTTTTTTT..    Win32/Poweliks
[2014.11.06 20:24:59.211] -  .::EE::::EE:SS:::::::.EE....EE....TT......   Version: 1.0.0.1
[2014.11.06 20:24:59.212] -  .::EEEEEEEE::SSSSSS::.EEEEEEEE....TT......   Built: Oct 15 2014
[2014.11.06 20:24:59.213] -  .::EE:::::::::::::SS:.EE..........TT......
[2014.11.06 20:24:59.214] -   .::EEEEEE:::SSSSSS::..EEEEEE.....TT.....    Copyright © ESET, spol. s r.o.
[2014.11.06 20:24:59.215] -   ..::::::::::::::::::....................    1992-2013. All rights reserved.
[2014.11.06 20:24:59.215] -     ....................................
[2014.11.06 20:24:59.215] -
[2014.11.06 20:24:59.215] - --------------------------------------------------------------------------------
[2014.11.06 20:24:59.215] -
[2014.11.06 20:24:59.216] - INFO: OS: 6.1.7601 SP1
[2014.11.06 20:24:59.216] - INFO: Product Type: Workstation
[2014.11.06 20:24:59.216] - INFO: WoW64: True
[2014.11.06 20:24:59.216] - INFO: Machine guid: DA8779AA-7D2B-4CE4-9AC5-25007A985593
[2014.11.06 20:24:59.216] -
[2014.11.06 20:25:01.833] - INFO: Scanning for system infection...
[2014.11.06 20:25:01.834] - --------------------------------------------------------------------------------
[2014.11.06 20:25:01.834] -
[2014.11.06 20:25:01.834] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.06 20:25:01.839] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.06 20:25:01.840] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.06 20:25:01.841] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.06 20:25:01.841] - INFO: Processing classes...
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}]
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.867] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.868] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.869] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.870] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.871] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.872] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.873] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.874] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.875] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.876] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.877] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.878] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.879] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.880] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.881] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.882] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.883] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.884] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.885] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.886] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.887] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.888] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.889] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.889] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.889] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.889] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.889] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.889] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.889] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.890] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.890] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.890] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.890] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.890] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.890] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.890] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.890] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.891] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.892] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.893] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.893] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.893] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.893] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.893] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.893] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.893] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.894] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.895] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.896] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.897] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.898] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.899] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.900] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.901] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.902] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBB}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBC}]
[2014.11.06 20:25:01.903] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.06 20:25:01.904] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}]
[2014.11.06 20:25:01.907] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}]
[2014.11.06 20:25:01.907] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2014.11.06 20:25:01.907] - WARNING: Found suspicous classid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2014.11.06 20:25:01.907] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.06 20:25:01.938] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.06 20:25:01.949] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.06 20:25:01.949] - INFO: Processing invalid values in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.06 20:25:01.949] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.06 20:25:01.949] - INFO: Processing value [ServerExecutable] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.06 20:25:01.950] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.06 20:25:01.950] - INFO: Processing value [ServerExecutable] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.06 20:25:01.950] - INFO: Processing invalid subkeys in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.06 20:25:01.950] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]...
[2014.11.06 20:25:01.968] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.06 20:25:01.975] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.06 20:25:01.975] - INFO: Win32/Poweliks found
[2014.11.06 20:25:33.648] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.06 20:25:33.648] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.06 20:25:33.648] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.06 20:25:33.648] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.06 20:25:33.648] - INFO: Processing classes...
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.648] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.658] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.668] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBC}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}]
[2014.11.06 20:25:33.678] - INFO: Processing clsid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2014.11.06 20:25:33.678] - INFO: Deleted classid [\Registry\User\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2014.11.06 20:25:33.678] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.06 20:25:33.678] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.06 20:25:33.678] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.06 20:25:33.678] - INFO: Processing invalid values in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.06 20:25:33.678] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.06 20:25:33.678] - INFO: Processing value [ServerExecutable] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.06 20:25:33.678] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.06 20:25:33.678] - INFO: Processing value [ServerExecutable] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.06 20:25:33.678] - INFO: Processing invalid subkeys in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.06 20:25:33.678] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]...
[2014.11.06 20:25:33.678] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.06 20:25:33.678] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.06 20:25:33.678] - INFO: Cleaning status: 0
[2014.11.06 20:25:39.770] - End
 



#4 Uncle Gary

Uncle Gary
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 06 November 2014 - 09:12 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014
Ran by Jennifer (administrator) on JP2009 on 06-11-2014 20:36:14
Running from C:\Users\Jennifer\Desktop
Loaded Profile: Jennifer (Available profiles: Jennifer)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CrypKey (Canada) Ltd.) C:\Windows\System32\Crypserv.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
(Garmin Ltd or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
(Hewlett-Packard) C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Cyber Power Systems, Inc.) C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\pppeuser.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files (x86)\Common Files\logishrd\LQCVFX\COCIManager.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Cyber Power Systems, Inc.) C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\ppped.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpshare.exe
(Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM-x32\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Remote Solution] => C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe [656896 2009-05-26] ()
HKLM-x32\...\Run: [HP Software Update] => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2008-12-08] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [NortonOnlineBackupReminder] => C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [581480 2009-05-12] (Symantec Corporation)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-08-12] (Logitech Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PowerPanel Personal Edition User Interaction] => C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\pppeuser.exe [350144 2012-03-27] (Cyber Power Systems, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [HPADVISOR] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1689144 2010-06-29] (Hewlett-Packard)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [5915480 2010-10-29] (Logitech Inc.)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22869088 2014-10-21] (Google)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2260480 2009-03-05] (Safer-Networking Ltd.)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.drudgereport.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Old Start Page = http://www.drudgereport.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/?fr=befhp&type=iehp-3.14-1408
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {264E35D2-4EBD-4C52-BC68-DB936B86118A} URL = http://www.ask.com/web?q={searchTerms}&l=dis&o=uscqd
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {264E35D2-4EBD-4C52-BC68-DB936B86118A} URL = http://www.ask.com/web?q={searchTerms}&l=dis&o=uscqd
SearchScopes: HKCU - {181436DC-8E86-4760-9EAE-C25B9BBBE735} URL = https://search.yahoo.com/search?ei=utf-8&fr=befds&p={searchTerms}&type=ieds-3.14-1408
SearchScopes: HKCU - {264E35D2-4EBD-4C52-BC68-DB936B86118A} URL = http://www.ask.com/web?q={searchTerms}&l=dis&o=uscqd
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://www.ask.com/web?q={SEARCHTERMS}&o=15527&l=dis
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: No Name -> {6C8DB2EC-499B-4897-A784-0E3186C97E9D} ->  No File
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: hpBHO Class -> {ABD3B5E1-B268-407B-A150-2641DAB8D898} -> C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll (AOL Products)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Microsoft Live Search Toolbar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll No File
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\0hz5avx5.default
FF Homepage: hxxp://www.drudgereport.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin -> C:\Users\Jennifer\AppData\Local\Citrix\Plugins\97\npappdetector.dll (Citrix Online)
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn [2014-11-03]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\gcswf32.dll No File
CHR Plugin: (Java™ Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Chrome NaCl) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll ()
CHR Plugin: (Norton Confidential) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.4.6_0\npcoplgn.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Profile: C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-04]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
CHR Extension: (Norton Identity Safe) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-15]
CHR Extension: (Norton Security Toolbar) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2012-07-22]
CHR Extension: (Google Wallet) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-29]
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\Exts\Chrome.crx [2014-10-04]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\Exts\Chrome.crx [2014-10-04]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Crypkey License; C:\Windows\system32\crypserv.exe [122880 2008-05-07] (CrypKey (Canada) Ltd.) [File not signed]
S2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-05-18] (Hewlett-Packard Company) [File not signed]
S2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe [276376 2014-09-21] (Symantec Corporation)
R2 ppped; C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\ppped.exe [1013696 2012-03-27] (Cyber Power Systems, Inc.)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20141030.001\BHDrvx64.sys [1587416 2014-10-03] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1506000.020\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-09-09] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-09-09] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20141106.001\IDSvia64.sys [633560 2014-08-29] (Symantec Corporation)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20141106.004\ENG64.SYS [129752 2014-10-03] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20141106.004\EX64.SYS [2137304 2014-10-03] (Symantec Corporation)
R1 NetworkX; C:\Windows\system32\ckldrv.sys [28664 2008-03-17] ()
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Research In Motion Limited)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R1 SRTSP; C:\Windows\System32\Drivers\NISx64\1506000.020\SRTSP64.SYS [876248 2014-08-25] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1506000.020\SRTSPX64.SYS [37592 2014-08-25] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1506000.020\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1506000.020\SYMEFA64.SYS [1148120 2014-03-03] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-01-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1506000.020\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-06 20:36 - 2014-11-06 20:36 - 00020640 _____ () C:\Users\Jennifer\Desktop\FRST.txt
2014-11-06 20:35 - 2014-11-06 20:36 - 00000000 ____D () C:\FRST
2014-11-06 20:34 - 2014-11-06 20:34 - 02114560 _____ (Farbar) C:\Users\Jennifer\Desktop\FRST64.exe
2014-11-06 20:24 - 2014-11-06 20:25 - 00377066 _____ () C:\Users\Jennifer\Desktop\ESETPoweliksCleaner.exe_20141106.202459.4592.log
2014-11-06 20:24 - 2014-11-06 20:24 - 00002754 _____ () C:\Users\Jennifer\Downloads\ESETPoweliksCleaner.exe_20141106.202421.4660.log
2014-11-06 20:23 - 2014-11-06 20:24 - 00186568 _____ (ESET) C:\Users\Jennifer\Desktop\ESETPoweliksCleaner.exe
2014-11-03 20:03 - 2014-11-03 20:03 - 00023731 _____ () C:\ComboFix.txt
2014-11-03 18:41 - 2011-06-26 01:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-11-03 18:41 - 2010-11-07 12:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-11-03 18:41 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00098816 _____ () C:\Windows\sed.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00080412 _____ () C:\Windows\grep.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00068096 _____ () C:\Windows\zip.exe
2014-11-03 18:39 - 2014-11-03 20:03 - 00000000 ____D () C:\Qoobox
2014-11-03 18:38 - 2014-11-03 20:01 - 00000000 ____D () C:\Windows\erdnt
2014-10-31 16:40 - 2014-11-02 12:07 - 00007601 _____ () C:\Users\Jennifer\AppData\Local\Resmon.ResmonCfg
2014-10-23 19:22 - 2014-10-23 19:23 - 119959288 _____ (Microsoft Corporation) C:\Users\Jennifer\Downloads\msert.exe
2014-10-23 14:49 - 2014-10-23 14:49 - 00000000 ____D () C:\Users\Jennifer\AppData\Roaming\LavasoftStatistics
2014-10-23 14:46 - 2014-10-31 15:21 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-10-21 18:36 - 2014-10-21 20:51 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-10-21 18:36 - 2014-10-21 18:40 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy
2014-10-21 18:36 - 2014-10-21 18:36 - 00001268 _____ () C:\Users\Jennifer\Desktop\Spybot - Search & Destroy.lnk
2014-10-21 18:36 - 2014-10-21 18:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2014-10-21 18:28 - 2014-10-21 18:28 - 16409960 _____ (Safer Networking Limited ) C:\Users\Jennifer\Downloads\spybotsd162.exe
2014-10-16 09:00 - 2014-10-09 21:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-16 09:00 - 2014-10-09 21:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-16 09:00 - 2014-10-09 21:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-16 09:00 - 2014-10-06 21:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-16 09:00 - 2014-10-06 21:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-16 09:00 - 2014-09-28 19:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-16 09:00 - 2014-09-25 17:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-16 09:00 - 2014-09-25 17:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-16 09:00 - 2014-09-25 17:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-16 09:00 - 2014-09-25 17:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-16 09:00 - 2014-09-25 17:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-16 09:00 - 2014-09-25 17:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-16 09:00 - 2014-09-25 17:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-16 09:00 - 2014-09-18 21:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-16 09:00 - 2014-09-18 20:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-16 09:00 - 2014-09-18 20:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-16 09:00 - 2014-09-18 20:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-16 09:00 - 2014-09-18 20:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-16 09:00 - 2014-09-18 20:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-16 09:00 - 2014-09-18 20:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-16 09:00 - 2014-09-18 20:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-16 09:00 - 2014-09-18 20:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-16 09:00 - 2014-09-18 20:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-16 09:00 - 2014-09-18 20:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-16 09:00 - 2014-09-18 20:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-16 09:00 - 2014-09-18 20:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-16 09:00 - 2014-09-18 20:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-16 09:00 - 2014-09-18 20:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-16 09:00 - 2014-09-18 20:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-16 09:00 - 2014-09-18 20:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-16 09:00 - 2014-09-18 20:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-16 09:00 - 2014-09-18 20:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-16 09:00 - 2014-09-18 20:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-16 09:00 - 2014-09-18 20:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-16 09:00 - 2014-09-18 20:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-16 09:00 - 2014-09-18 20:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-16 09:00 - 2014-09-18 20:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-16 09:00 - 2014-09-18 20:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-16 09:00 - 2014-09-18 20:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-16 09:00 - 2014-09-18 19:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-16 09:00 - 2014-09-18 19:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-16 09:00 - 2014-09-18 19:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-16 09:00 - 2014-09-18 19:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-16 09:00 - 2014-09-18 19:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-16 09:00 - 2014-09-18 19:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-16 09:00 - 2014-09-18 19:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-16 09:00 - 2014-09-18 19:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-16 09:00 - 2014-09-18 19:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-16 09:00 - 2014-09-18 19:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-16 09:00 - 2014-09-18 19:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-16 09:00 - 2014-09-18 19:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-16 09:00 - 2014-09-18 19:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-16 09:00 - 2014-09-18 19:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-16 09:00 - 2014-09-18 19:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-16 09:00 - 2014-09-18 19:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-16 09:00 - 2014-09-18 19:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-16 09:00 - 2014-09-18 18:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-16 09:00 - 2014-09-18 18:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-16 09:00 - 2014-09-18 18:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-16 09:00 - 2014-09-18 18:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-16 08:59 - 2014-09-17 21:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-16 08:59 - 2014-09-17 20:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-16 08:59 - 2014-09-12 20:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-16 08:59 - 2014-09-12 20:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-16 08:59 - 2014-09-04 00:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-16 08:59 - 2014-09-04 00:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-16 08:59 - 2014-07-16 21:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-16 08:59 - 2014-07-16 21:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-16 08:59 - 2014-07-16 20:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-16 08:59 - 2014-07-16 20:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-16 08:59 - 2014-07-16 20:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-16 08:59 - 2014-07-16 20:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-16 08:59 - 2014-07-16 20:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-16 08:59 - 2014-07-16 20:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-16 08:59 - 2014-07-16 20:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-16 08:59 - 2014-07-16 20:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-07 08:09 - 2014-10-07 08:09 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-06 20:37 - 2012-06-30 09:30 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-06 20:37 - 2009-07-13 23:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-06 20:37 - 2009-07-13 23:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-06 20:34 - 2009-10-23 21:48 - 01581245 _____ () C:\Windows\WindowsUpdate.log
2014-11-06 20:29 - 2012-12-25 16:04 - 00000000 ____D () C:\Program Files (x86)\CyberPower PowerPanel Personal Edition
2014-11-06 20:28 - 2011-02-26 14:02 - 00018848 _____ () C:\Windows\error.log
2014-11-06 20:28 - 2010-09-23 17:31 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-06 20:28 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-06 20:28 - 2009-07-13 23:51 - 00052617 _____ () C:\Windows\setupact.log
2014-11-06 20:27 - 2011-02-26 14:02 - 00006115 _____ () C:\Windows\errord.log
2014-11-06 19:56 - 2010-09-23 17:31 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-06 19:49 - 2014-02-24 17:41 - 00000580 _____ () C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-3339020092-2038940241-2761494359-1001.job
2014-11-06 19:11 - 2009-12-17 21:40 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{C91BC408-A2EA-4401-8350-92347ADC3703}
2014-11-05 12:59 - 2014-05-07 17:11 - 00002048 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2014-11-05 12:59 - 2014-05-07 17:11 - 00002046 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2014-11-05 12:59 - 2014-05-07 17:11 - 00002036 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2014-11-05 12:59 - 2014-05-07 17:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-11-05 10:26 - 2014-02-26 03:05 - 00799604 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-11-03 20:03 - 2014-04-22 16:36 - 00000000 ____D () C:\Users\dub_cm_auto
2014-11-03 20:03 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Default
2014-11-03 19:57 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini
2014-11-03 19:56 - 2009-08-21 21:36 - 00345118 _____ () C:\Windows\PFRO.log
2014-11-03 19:49 - 2009-12-17 20:43 - 00000000 ____D () C:\Users\Jennifer
2014-11-03 18:41 - 2010-02-08 12:12 - 00000000 ____D () C:\Users\Jennifer\AppData\Local\CrashDumps
2014-11-03 16:15 - 2014-05-07 17:14 - 00000000 ___RD () C:\Users\Jennifer\Google Drive
2014-11-03 09:50 - 2014-09-19 08:33 - 00003204 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForJennifer
2014-11-03 09:50 - 2014-09-19 08:33 - 00000344 _____ () C:\Windows\Tasks\HPCeeScheduleForJennifer.job
2014-11-02 12:45 - 2009-07-14 00:13 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-02 12:33 - 2010-09-23 17:31 - 00000000 ____D () C:\Program Files\Google
2014-11-02 12:33 - 2010-09-23 17:31 - 00000000 ____D () C:\Program Files (x86)\Google
2014-11-02 11:57 - 2010-09-23 17:31 - 00000000 ____D () C:\Users\Jennifer\AppData\Local\Google
2014-11-02 11:57 - 2010-09-23 17:31 - 00000000 ____D () C:\ProgramData\Google
2014-10-31 13:41 - 2011-01-20 10:51 - 00000000 ____D () C:\Program Files (x86)\Coupons
2014-10-31 10:34 - 2013-06-09 14:07 - 00000000 ____D () C:\Users\Jennifer\Documents\BHS Expense Reports
2014-10-31 09:50 - 2009-12-17 21:00 - 00000552 _____ () C:\Windows\Tasks\PCDRScheduledMaintenance.job
2014-10-31 09:00 - 2011-07-22 15:16 - 00037263 _____ () C:\Windows\system32\lvcoinst.log
2014-10-25 01:53 - 2014-02-24 17:41 - 00003608 _____ () C:\Windows\System32\Tasks\G2MUpdateTask-S-1-5-21-3339020092-2038940241-2761494359-1001
2014-10-23 18:03 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-10-20 17:51 - 2010-09-23 17:31 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-20 17:51 - 2010-09-23 17:31 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-18 03:45 - 2009-07-13 23:45 - 00431664 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-18 03:39 - 2014-05-07 02:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-18 02:52 - 2009-12-17 21:56 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-18 02:34 - 2013-08-15 02:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-18 02:13 - 2009-12-17 20:54 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-07 10:29 - 2010-05-13 16:16 - 00235008 ___SH () C:\Users\Jennifer\Documents\Thumbs.db
2014-10-07 08:00 - 2014-01-25 13:09 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2014-10-07 08:00 - 2011-12-01 15:44 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-10-07 08:00 - 2011-05-12 02:21 - 00002507 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2014-10-07 08:00 - 2009-08-21 22:15 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2014-10-07 07:59 - 2014-01-25 12:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-05 00:41

==================== End Of Log ============================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2014
Ran by Jennifer at 2014-11-06 20:38:56
Running from C:\Users\Jennifer\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Internet Security (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton Internet Security (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Activate Norton Online Backup (HKLM-x32\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.1.20.0 - Symantec)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.3.13070 - Adobe Systems Inc.)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader X (10.1.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.11 - Adobe Systems Incorporated)
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft Print Creations - Album Page (HKLM-x32\...\{E6B4117F-AC59-4B13-9274-EB136E8897EE}) (Version:  - ArcSoft)
ArcSoft Print Creations - Funhouse (HKLM-x32\...\{9591C049-5CAE-4E89-A8D9-191F1899628B}) (Version:  - ArcSoft)
ArcSoft Print Creations - Greeting Card (HKLM-x32\...\{F04F9557-81A9-4293-BC49-2C216FA325A7}) (Version:  - ArcSoft)
ArcSoft Print Creations - Photo Book (HKLM-x32\...\{56589DFE-0C29-4DFE-8E42-887B771ECD23}) (Version:  - ArcSoft)
ArcSoft Print Creations - Photo Calendar (HKLM-x32\...\{CA9ED5E4-1548-485B-A293-417840060158}) (Version:  - ArcSoft)
ArcSoft Print Creations - Scrapbook (HKLM-x32\...\{B0D83FCD-9D42-43ED-8315-250326AADA02}) (Version:  - ArcSoft)
ArcSoft Print Creations - Slimline Card (HKLM-x32\...\{007B37D9-0C45-4202-834B-DD5FAAE99D63}) (Version:  - ArcSoft)
ArcSoft Print Creations (HKLM-x32\...\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}) (Version: 2.8.255.384 - ArcSoft)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CameraHelperMsi (x32 Version: 13.30.1395.0 - Logitech) Hidden
CCScore (x32 Version: 8.01.0000.0001 - EASTMAN KODAK Company) Hidden
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.3101 - CyberLink Corp.)
CyberPower PowerPanel Personal Edition 1.3.3 (HKLM-x32\...\{972F23F4-F293-4074-853D-125A59EB356D}) (Version: 1.3.3 - Cyber Power Systems, Inc.)
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESSBrwr (x32 Version: 8.00.0000.0001 - EASTMAN KODAK Company) Hidden
ESSCDBK (x32 Version: 8.00.0000.0001 - EASTMAN KODAK Company) Hidden
ESScore (x32 Version: 8.01.0000.0001 - EASTMAN KODAK Company) Hidden
ESSgui (x32 Version: 8.01.0000.0001 - EASTMAN KODAK Company) Hidden
ESSini (x32 Version: 8.00.0000.0001 - EASTMAN KODAK Company) Hidden
ESSPCD (x32 Version: 7.01.0000.0001 - EASTMAN KODAK Company) Hidden
ESSPDock (x32 Version: 6.03.0001.0004 - EASTMAN KODAK Company) Hidden
ESSTOOLS (x32 Version: 5.00.0000.0004 - EASTMAN KODAK Company) Hidden
essvatgt (x32 Version: 8.00.0000.0001 - EASTMAN KODAK Company) Hidden
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Drive (HKLM-x32\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GoToMeeting 6.4.5.1865 (HKCU\...\GoToMeeting) (Version: 6.4.5.1865 - CitrixOnline)
Hardware Diagnostic Tools (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5434.08 - PC-Doctor, Inc.)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
Homepage Protection (HKLM-x32\...\Homepage Protection) (Version:  - AOL Products)
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.3.12286.3436 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.71 - WildTangent)
HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
HP Remote Solution (HKLM-x32\...\HP Remote Solution) (Version: 1.1.9.0 - TopSeed)
HP Setup (HKLM-x32\...\{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}) (Version: 1.2.3220.3079 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B9A03B7B-E0FF-4FB3-BA83-762E58A1B0AA}) (Version: 10.1.0002 - Hewlett-Packard)
HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.450 - Oracle)
Kodak EasyShare software (HKLM-x32\...\{D32470A1-B10C-4059-BA53-CF0486F68EBC}) (Version:  - Eastman Kodak Company)
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1901 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.1901 - CyberLink Corp.) Hidden
LightScribe System Software (HKLM-x32\...\{DD6C316A-FE75-4FBB-9D22-4C1920232B72}) (Version: 1.18.5.1 - LightScribe)
Logitech Vid HD (HKLM-x32\...\Logitech Vid) (Version: 7.2 (7240) - Logitech Inc..)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
LSI PCI-SV92EX Soft Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.98 - LSI Corporation)
LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Live Search Toolbar (HKLM-x32\...\{DF802C05-4660-418c-970C-B988ADB1D316}) (Version: 3.0.560.0 - Microsoft Live Search Toolbar)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 60 day trial (HKLM\...\OfficeTrial) (Version:  - )
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 32.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
netbrdg (x32 Version: 7.01.0000.0001 - EASTMAN KODAK Company) Hidden
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.6.0.32 - Symantec Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.6 - NVIDIA Corporation)
OfotoXMI (x32 Version: 8.02.0000.0001 - EASTMAN KODAK Company) Hidden
PictureMover (HKLM-x32\...\{1896E712-2B3D-45eb-BCE9-542742A51032}) (Version: 3.3.1.19 - Hewlett-Packard Company)
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3101 - CyberLink Corp.)
Power2Go (x32 Version: 6.0.3101 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3101 - CyberLink Corp.)
PowerDirector (x32 Version: 7.0.3101 - CyberLink Corp.) Hidden
PowerRecover (x32 Version: 5.5.1923 - CyberLink Corp.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5910 - Realtek Semiconductor Corp.)
SFR (x32 Version: 8.01.0000.0001 - Eastman Kodak Company) Hidden
SHASTA (x32 Version: 7.01.0000.0001 - EASTMAN KODAK Company) Hidden
skin0001 (x32 Version: 8.00.0000.0001 - EASTMAN KODAK Company) Hidden
SKINXSDK (x32 Version: 7.01.0000.0001 - EASTMAN KODAK Company) Hidden
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.9.9216 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
staticcr (x32 Version: 8.00.0000.0001 - EASTMAN KODAK Company) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
ViewSonic Monitor Drivers (HKLM-x32\...\{B4FEA924-630D-11D4-B78E-005004566E4D}) (Version:  - )
VPRINTOL (x32 Version: 7.01.0000.0001 - EASTMAN KODAK Company) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WIRELESS (x32 Version: 7.02.0000.0001 - EASTMAN KODAK Company) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3339020092-2038940241-2761494359-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Jennifer\AppData\Local\Citrix\GoToMeeting\1350\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)

==================== Restore Points  =========================

03-11-2014 22:03:15 AA11

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2014-11-03 19:57 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {02F2FA60-FFB0-4A38-A520-43FD3421BE28} - System32\Tasks\{9DF3F40B-8CE2-4FE1-92AC-4C9AA2C4F507} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)
Task: {25C8E6EB-4031-4A15-90EC-7CFF4A7B4CC0} - System32\Tasks\{1BA98483-C362-4787-9959-710EE4420F8D} => C:\WEP\WORDZAP.EXE
Task: {559AD7D0-35F5-4681-BCC9-B34A91069B14} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {6D93C859-3C7E-48D4-A05D-13AA8B4633F3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {6FBB9BA8-0F5F-4A6B-A45D-3B7D3581A69F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {7C0AB38C-3515-4068-8ABF-F9D569938B3F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-22] (Hewlett-Packard)
Task: {80A369FE-FED9-48DF-B4BA-40671CCDE3A8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
Task: {86B95C08-CDFA-4369-B4FC-2CB359F03429} - System32\Tasks\PCDRScheduledMaintenance => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe [2009-07-02] (PC-Doctor, Inc.)
Task: {956972C2-B10F-4B8A-BF42-32B892185962} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {99AB7903-0266-4144-814A-44B1EA2784D4} - System32\Tasks\G2MUpdateTask-S-1-5-21-3339020092-2038940241-2761494359-1001 => C:\Users\Jennifer\AppData\Local\Citrix\GoToMeeting\1865\g2mupdate.exe [2014-10-25] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {9DA015E7-6709-4BFC-A2D7-766FD49FE919} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-08-07] ()
Task: {AD3EA0E5-66C2-413F-850C-EAF597DDA146} - System32\Tasks\{8B5F14B7-8F72-40F0-964A-556910CD057E} => Iexplore.exe http://ui.skype.com/ui/0/5.8.0.158/en/abandoninstall?page=tsMain
Task: {AF8D85DB-C922-40E1-810E-CFB5CAB62C25} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
Task: {C8052531-0B25-45C5-85BC-30A54A13FADA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24] (Adobe Systems Incorporated)
Task: {C8233C6A-BBDC-4C7B-9504-7F649F5B0041} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {DE21BAD5-9E2D-44F4-AD69-1F10ED6DD92E} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {EECF066C-1835-4D67-9796-1A5CD6260166} - System32\Tasks\HPCeeScheduleForJennifer => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {F39B6F54-0990-4E4C-87FA-18A45A07BEAC} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-3339020092-2038940241-2761494359-1001.job => C:\Users\Jennifer\AppData\Local\Citrix\GoToMeeting\1865\g2mupdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForJennifer.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\PCDRScheduledMaintenance.job => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe

==================== Loaded Modules (whitelisted) =============

2009-05-26 03:36 - 2009-05-26 03:36 - 00656896 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
2011-08-12 12:18 - 2011-08-12 12:18 - 00265240 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2011-08-12 12:19 - 2011-08-12 12:19 - 00680984 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
2014-07-31 11:16 - 2014-07-31 11:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-07-31 11:16 - 2014-07-31 11:16 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-06-29 23:12 - 2010-06-29 23:12 - 00061440 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
2010-06-29 23:12 - 2010-06-29 23:12 - 00131072 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
2010-06-29 23:12 - 2010-06-29 23:12 - 00040960 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll
2010-06-29 23:12 - 2010-06-29 23:12 - 00005632 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll
2010-06-29 23:12 - 2010-06-29 23:12 - 00018944 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll
2010-06-29 23:12 - 2010-06-29 23:12 - 00036864 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll
2010-06-29 23:12 - 2010-06-29 23:12 - 00028672 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
2010-06-29 23:12 - 2010-06-29 23:12 - 00007680 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll
2009-04-09 18:04 - 2009-04-09 18:04 - 02141008 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtCore4.dll
2009-03-03 17:17 - 2009-03-03 17:17 - 07704400 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtGui4.dll
2009-04-22 16:53 - 2009-04-22 16:53 - 00969040 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtNetwork4.dll
2009-03-03 17:17 - 2009-03-03 17:17 - 00475472 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtOpenGL4.dll
2009-03-03 17:17 - 2009-03-03 17:17 - 00363856 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtXml4.dll
2009-03-03 17:17 - 2009-03-03 17:17 - 00200016 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtSql4.dll
2010-10-29 15:01 - 2010-10-29 15:01 - 00027472 _____ () C:\Program Files (x86)\Logitech\Vid HD\SDL.dll
2009-03-03 17:17 - 2009-03-03 17:17 - 11311952 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtWebKit4.dll
2009-03-03 17:17 - 2009-03-03 17:17 - 00291664 _____ () C:\Program Files (x86)\Logitech\Vid HD\phonon4.dll
2010-10-29 15:02 - 2010-10-29 15:02 - 00751616 _____ () C:\Program Files (x86)\Logitech\Vid HD\vpxmd.dll
2009-03-03 17:18 - 2009-03-03 17:18 - 00029008 _____ () C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qgif4.dll
2009-03-03 17:18 - 2009-03-03 17:18 - 00035152 _____ () C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qico4.dll
2009-03-03 17:18 - 2009-03-03 17:18 - 00138064 _____ () C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qjpeg4.dll
2011-08-19 04:26 - 2011-08-19 04:26 - 00183320 _____ () C:\Program Files (x86)\Common Files\logishrd\SharedBin\LVAPI11.dll
2010-05-07 17:35 - 2010-05-07 17:35 - 02143576 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2010-05-07 17:35 - 2010-05-07 17:35 - 07954776 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2010-05-07 17:36 - 2010-05-07 17:36 - 00340824 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2010-05-07 17:37 - 2010-05-07 17:37 - 00027480 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2010-05-07 17:37 - 2010-05-07 17:37 - 00126808 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2011-08-22 15:47 - 2011-08-22 15:47 - 00336408 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2014-11-06 20:28 - 2014-11-06 20:28 - 00098816 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32api.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00110080 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\pywintypes27.dll
2014-11-06 20:28 - 2014-11-06 20:28 - 00364544 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\pythoncom27.dll
2014-11-06 20:28 - 2014-11-06 20:28 - 00045568 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\_socket.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 01160704 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\_ssl.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00320512 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32com.shell.shell.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00713216 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\_hashlib.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 01175040 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\wx._core_.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00805888 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\wx._gdi_.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00811008 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\wx._windows_.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 01062400 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\wx._controls_.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00735232 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\wx._misc_.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00128512 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\_elementtree.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00127488 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\pyexpat.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00557056 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\pysqlite2._sqlite.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00087552 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\_ctypes.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00119808 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32file.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00108544 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32security.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00007168 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\hashobjs_ext.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00167936 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32gui.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00018432 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32event.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00038912 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32inet.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00011264 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32crypt.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00070656 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\wx._html2.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00027136 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\_multiprocessing.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00035840 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32process.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00686080 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\unicodedata.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00122368 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\wx._wizard.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00024064 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32pipe.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00025600 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32pdh.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00525640 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\windows._lib_cacheinvalidation.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00010240 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\select.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00017408 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32profile.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00022528 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\win32ts.pyd
2014-11-06 20:28 - 2014-11-06 20:28 - 00078336 _____ () C:\Users\Jennifer\AppData\Local\Temp\_MEI19282\wx._animate.pyd
2014-09-26 18:19 - 2014-09-26 18:19 - 03715184 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-09-10 09:37 - 2014-09-10 09:37 - 16825520 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-3339020092-2038940241-2761494359-500 - Administrator - Disabled)
Guest (S-1-5-21-3339020092-2038940241-2761494359-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3339020092-2038940241-2761494359-1002 - Limited - Enabled)
Jennifer (S-1-5-21-3339020092-2038940241-2761494359-1001 - Administrator - Enabled) => C:\Users\Jennifer

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/04/2014 01:05:45 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/03/2014 06:41:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 32.0.3.5379, time stamp: 0x54224e6b
Faulting module name: mozalloc.dll, version: 32.0.3.5379, time stamp: 0x54221b67
Exception code: 0x80000003
Fault offset: 0x0000141b
Faulting process id: 0xd08
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (11/03/2014 06:18:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17344, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17344, time stamp: 0x541b8a22
Exception code: 0xc00000fd
Fault offset: 0x00095c91
Faulting process id: 0x1e64
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (11/03/2014 01:52:51 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/03/2014 11:05:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17344, time stamp: 0x4a5bc6b7
Faulting module name: Flash32_15_0_0_167.ocx, version: 15.0.0.167, time stamp: 0x541384c0
Exception code: 0xc0000005
Fault offset: 0x00647997
Faulting process id: 0x25c0
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (11/03/2014 04:19:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17344, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17344, time stamp: 0x541b8a22
Exception code: 0xc0000005
Fault offset: 0x004a5803
Faulting process id: 0x1840
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (11/03/2014 02:11:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17344, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17344, time stamp: 0x541b8a22
Exception code: 0xc00000fd
Fault offset: 0x003fbc2a
Faulting process id: 0x2024
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (11/03/2014 00:26:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17344, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17344, time stamp: 0x541b8a22
Exception code: 0xc00000fd
Fault offset: 0x00095c91
Faulting process id: 0x2618
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (11/02/2014 11:47:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17344, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17344, time stamp: 0x541b8a22
Exception code: 0xc00000fd
Fault offset: 0x00094765
Faulting process id: 0xd48
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (11/02/2014 10:43:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17344, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17344, time stamp: 0x541b8a22
Exception code: 0xc00000fd
Fault offset: 0x000b1dd3
Faulting process id: 0x26dc
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3


System errors:
=============
Error: (11/06/2014 08:31:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Garmin Core Update Service service failed to start due to the following error:
%%1053

Error: (11/06/2014 08:31:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Garmin Core Update Service service to connect.

Error: (11/06/2014 08:31:08 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070420

Error: (11/06/2014 08:29:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Norton Internet Security service failed to start due to the following error:
%%1053

Error: (11/06/2014 08:29:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Norton Internet Security service to connect.

Error: (11/06/2014 08:28:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Garmin Core Update Service service failed to start due to the following error:
%%1053

Error: (11/06/2014 08:28:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Garmin Core Update Service service to connect.

Error: (11/03/2014 08:11:50 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (11/03/2014 07:59:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The HP Support Assistant Service service failed to start due to the following error:
%%31

Error: (11/03/2014 07:53:52 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.


Microsoft Office Sessions:
=========================
Error: (03/27/2014 08:51:26 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 5 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/27/2014 08:51:04 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 14 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (12/20/2013 04:54:13 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 48 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (12/18/2013 00:21:58 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 12756 seconds with 120 seconds of active time.  This session ended with a crash.

Error: (11/09/2013 10:54:05 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 21 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (10/20/2013 05:05:02 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (07/28/2013 09:29:39 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 50 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (05/05/2013 03:42:12 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 3 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (12/22/2012 00:57:39 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 21 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (12/20/2012 04:41:27 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 63 seconds with 60 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-11-03 19:48:59.758
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-11-03 19:48:58.739
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: AMD Athlon™ II X2 215 Processor
Percentage of memory in use: 67%
Total physical RAM: 2942.49 MB
Available physical RAM: 958.61 MB
Total Pagefile: 5883.16 MB
Available Pagefile: 2867.79 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB

==================== Drives ================================

Drive c: (COMPAQ) (Fixed) (Total:454.76 GB) (Free:343.77 GB) NTFS
Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.9 GB) (Free:1.99 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 1549F232)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=454.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=10.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#5 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:15 PM

Posted 07 November 2014 - 04:58 AM

Hi,

Step 1

Please download adwcleaner.png AdwCleaner (by Xplode) and save it to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select "Run As Administrator"
  • Click on the Scan button.
  • After the scan has finished, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • After rebooting, a log file (that is saved in C:\AdwCleaner[S#].txt) will open automatically.
    Copy and paste the contents of that logfile in your next reply.
Step 2

Please download and install mbam.pngMalwarebytes Anti-Malware
  • Please open Malwarebytes Anti-Malware.
  • Please update the database by clicking on the "Update Now" button.
  • Following the update and click "Settings" [1] and go to "Detection and Protection" [2]
  • Make sure "Scan for Rootkits" is checked.
  • Click on Dashboard [3], then click on Scan Now [4] to start the scan.
    :exclame: If Malware or Potentially Unwanted Programs [PUPs] are found, you will receive a prompt so that you can decide what you want to do. I suggest "Quarantine All" [5]. Then click the button: Apply Actions. [6]
  • A window with an option to view the detailed log will appear.
    mbamlog.png
  • Click on "View detailed log".
  • After viewing the results, please click on the "Copy to Clipboard" button and then OK.
  • Return to our forum. Paste your log into your next reply.
mbameng.gif

Step 3

frst.pngfrstscan.png

Start FRST with administator privileges.
  • Press the Scan button.
  • When finished, FRST will produce a log (FRST.txt) in the same directory the tool was run from.
    Please copy and paste the log in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#6 Uncle Gary

Uncle Gary
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 07 November 2014 - 06:48 PM

# AdwCleaner v3.311 - Report created 07/11/2014 at 18:40:19
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jennifer - JP2009
# Running from : C:\Users\Jennifer\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Jennifer\Favorites\Search
Folder Deleted : C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
[!] Folder Deleted : C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
[!] Folder Deleted : C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
File Deleted : C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\adawarebp
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Mozilla Firefox v33.0.3 (x86 en-US)

[ File : C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\0hz5avx5.default\prefs.js ]


-\\ Google Chrome v38.0.2125.111

[ File : C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3400 octets] - [07/11/2014 18:38:47]
AdwCleaner[S0].txt - [2839 octets] - [07/11/2014 18:40:19]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2899 octets] ##########
 



#7 Uncle Gary

Uncle Gary
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 07 November 2014 - 07:30 PM

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 11/7/2014
Scan Time: 6:57:02 PM
Logfile:
Administrator: Yes

Version: 2.00.3.1025
Malware Database: v2014.11.07.06
Rootkit Database: v2014.11.01.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Jennifer

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 363668
Time Elapsed: 19 min, 0 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 1
PUP.Optional.ArcadeFrontier.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{6C8DB2EC-499B-4897-A784-0E3186C97E9D}, Quarantined, [0f8ce056e7957fb70beaf6b8d929e61a],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)



#8 Uncle Gary

Uncle Gary
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 07 November 2014 - 07:36 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014
Ran by Jennifer (administrator) on JP2009 on 07-11-2014 19:32:48
Running from C:\Users\Jennifer\Desktop
Loaded Profile: Jennifer (Available profiles: Jennifer)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CrypKey (Canada) Ltd.) C:\Windows\System32\Crypserv.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
(Garmin Ltd or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
(Hewlett-Packard) C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Cyber Power Systems, Inc.) C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\pppeuser.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\nis.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Cyber Power Systems, Inc.) C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\ppped.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
() C:\Program Files (x86)\Common Files\logishrd\LQCVFX\COCIManager.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\nis.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM-x32\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Remote Solution] => C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe [656896 2009-05-26] ()
HKLM-x32\...\Run: [HP Software Update] => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2008-12-08] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [NortonOnlineBackupReminder] => C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [581480 2009-05-12] (Symantec Corporation)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-08-12] (Logitech Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PowerPanel Personal Edition User Interaction] => C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\pppeuser.exe [350144 2012-03-27] (Cyber Power Systems, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [HPADVISOR] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1689144 2010-06-29] (Hewlett-Packard)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [5915480 2010-10-29] (Logitech Inc.)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22869088 2014-10-21] (Google)
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2260480 2009-03-05] (Safer-Networking Ltd.)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.drudgereport.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Old Start Page = http://www.drudgereport.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/?fr=befhp&type=iehp-3.14-1408
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3339020092-2038940241-2761494359-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {264E35D2-4EBD-4C52-BC68-DB936B86118A} URL = http://www.ask.com/web?q={searchTerms}&l=dis&o=uscqd
SearchScopes: HKLM-x32 - {264E35D2-4EBD-4C52-BC68-DB936B86118A} URL = http://www.ask.com/web?q={searchTerms}&l=dis&o=uscqd
SearchScopes: HKCU - {181436DC-8E86-4760-9EAE-C25B9BBBE735} URL = https://search.yahoo.com/search?ei=utf-8&fr=befds&p={searchTerms}&type=ieds-3.14-1408
SearchScopes: HKCU - {264E35D2-4EBD-4C52-BC68-DB936B86118A} URL = http://www.ask.com/web?q={searchTerms}&l=dis&o=uscqd
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: hpBHO Class -> {ABD3B5E1-B268-407B-A150-2641DAB8D898} -> C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll (AOL Products)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Microsoft Live Search Toolbar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll No File
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\0hz5avx5.default
FF Homepage: hxxp://www.drudgereport.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin -> C:\Users\Jennifer\AppData\Local\Citrix\Plugins\97\npappdetector.dll (Citrix Online)
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn [2014-11-07]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\gcswf32.dll No File
CHR Plugin: (Java™ Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Chrome NaCl) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll ()
CHR Plugin: (Norton Confidential) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.4.6_0\npcoplgn.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Profile: C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-04]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
CHR Extension: (Norton Identity Safe) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-15]
CHR Extension: (Google Wallet) - C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-29]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Crypkey License; C:\Windows\system32\crypserv.exe [122880 2008-05-07] (CrypKey (Canada) Ltd.) [File not signed]
S2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-05-18] (Hewlett-Packard Company) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe [276376 2014-09-21] (Symantec Corporation)
R2 ppped; C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\ppped.exe [1013696 2012-03-27] (Cyber Power Systems, Inc.)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20141030.001\BHDrvx64.sys [1587416 2014-10-03] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1506000.020\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-09-09] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-09-09] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20141106.001\IDSvia64.sys [633560 2014-08-29] (Symantec Corporation)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [129752 2014-11-07] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20141107.002\ENG64.SYS [129752 2014-10-03] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20141107.002\EX64.SYS [2137304 2014-10-03] (Symantec Corporation)
R1 NetworkX; C:\Windows\system32\ckldrv.sys [28664 2008-03-17] ()
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Research In Motion Limited)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R1 SRTSP; C:\Windows\System32\Drivers\NISx64\1506000.020\SRTSP64.SYS [876248 2014-08-25] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1506000.020\SRTSPX64.SYS [37592 2014-08-25] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1506000.020\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1506000.020\SYMEFA64.SYS [1148120 2014-03-03] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-01-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1506000.020\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-07 18:55 - 2014-11-07 18:57 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-07 18:53 - 2014-11-07 18:53 - 00001112 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-11-07 18:53 - 2014-11-07 18:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-11-07 18:52 - 2014-11-07 18:53 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-07 18:52 - 2014-11-07 18:52 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-07 18:52 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-07 18:52 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-07 18:52 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-07 18:50 - 2014-11-07 18:50 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Jennifer\Desktop\mbam-setup-2.0.3.1025.exe
2014-11-07 18:38 - 2014-11-07 18:40 - 00000000 ____D () C:\AdwCleaner
2014-11-07 18:37 - 2014-11-07 18:37 - 01375089 _____ () C:\Users\Jennifer\Desktop\AdwCleaner.exe
2014-11-07 10:21 - 2014-11-07 10:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-06 20:38 - 2014-11-06 20:39 - 00040599 _____ () C:\Users\Jennifer\Desktop\Addition.txt
2014-11-06 20:36 - 2014-11-07 19:32 - 00020444 _____ () C:\Users\Jennifer\Desktop\FRST.txt
2014-11-06 20:35 - 2014-11-07 19:32 - 00000000 ____D () C:\FRST
2014-11-06 20:34 - 2014-11-06 20:34 - 02114560 _____ (Farbar) C:\Users\Jennifer\Desktop\FRST64.exe
2014-11-06 20:24 - 2014-11-06 20:25 - 00377066 _____ () C:\Users\Jennifer\Desktop\ESETPoweliksCleaner.exe_20141106.202459.4592.log
2014-11-06 20:24 - 2014-11-06 20:24 - 00002754 _____ () C:\Users\Jennifer\Downloads\ESETPoweliksCleaner.exe_20141106.202421.4660.log
2014-11-06 20:23 - 2014-11-06 20:24 - 00186568 _____ (ESET) C:\Users\Jennifer\Desktop\ESETPoweliksCleaner.exe
2014-11-03 20:03 - 2014-11-03 20:03 - 00023731 _____ () C:\ComboFix.txt
2014-11-03 18:41 - 2011-06-26 01:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-11-03 18:41 - 2010-11-07 12:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-11-03 18:41 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00098816 _____ () C:\Windows\sed.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00080412 _____ () C:\Windows\grep.exe
2014-11-03 18:41 - 2000-08-30 19:00 - 00068096 _____ () C:\Windows\zip.exe
2014-11-03 18:39 - 2014-11-03 20:03 - 00000000 ____D () C:\Qoobox
2014-11-03 18:38 - 2014-11-03 20:01 - 00000000 ____D () C:\Windows\erdnt
2014-10-31 16:40 - 2014-11-02 12:07 - 00007601 _____ () C:\Users\Jennifer\AppData\Local\Resmon.ResmonCfg
2014-10-23 19:22 - 2014-10-23 19:23 - 119959288 _____ (Microsoft Corporation) C:\Users\Jennifer\Downloads\msert.exe
2014-10-23 14:49 - 2014-10-23 14:49 - 00000000 ____D () C:\Users\Jennifer\AppData\Roaming\LavasoftStatistics
2014-10-23 14:46 - 2014-10-31 15:21 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-10-21 18:36 - 2014-10-21 20:51 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-10-21 18:36 - 2014-10-21 18:40 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy
2014-10-21 18:36 - 2014-10-21 18:36 - 00001268 _____ () C:\Users\Jennifer\Desktop\Spybot - Search & Destroy.lnk
2014-10-21 18:36 - 2014-10-21 18:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2014-10-21 18:28 - 2014-10-21 18:28 - 16409960 _____ (Safer Networking Limited ) C:\Users\Jennifer\Downloads\spybotsd162.exe
2014-10-16 09:00 - 2014-10-09 21:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-16 09:00 - 2014-10-09 21:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-16 09:00 - 2014-10-09 21:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-16 09:00 - 2014-10-06 21:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-16 09:00 - 2014-10-06 21:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-16 09:00 - 2014-09-28 19:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-16 09:00 - 2014-09-25 17:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-16 09:00 - 2014-09-25 17:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-16 09:00 - 2014-09-25 17:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-16 09:00 - 2014-09-25 17:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-16 09:00 - 2014-09-25 17:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-16 09:00 - 2014-09-25 17:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-16 09:00 - 2014-09-25 17:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-16 09:00 - 2014-09-18 21:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-16 09:00 - 2014-09-18 20:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-16 09:00 - 2014-09-18 20:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-16 09:00 - 2014-09-18 20:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-16 09:00 - 2014-09-18 20:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-16 09:00 - 2014-09-18 20:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-16 09:00 - 2014-09-18 20:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-16 09:00 - 2014-09-18 20:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-16 09:00 - 2014-09-18 20:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-16 09:00 - 2014-09-18 20:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-16 09:00 - 2014-09-18 20:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-16 09:00 - 2014-09-18 20:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-16 09:00 - 2014-09-18 20:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-16 09:00 - 2014-09-18 20:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-16 09:00 - 2014-09-18 20:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-16 09:00 - 2014-09-18 20:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-16 09:00 - 2014-09-18 20:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-16 09:00 - 2014-09-18 20:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-16 09:00 - 2014-09-18 20:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-16 09:00 - 2014-09-18 20:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-16 09:00 - 2014-09-18 20:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-16 09:00 - 2014-09-18 20:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-16 09:00 - 2014-09-18 20:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-16 09:00 - 2014-09-18 20:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-16 09:00 - 2014-09-18 20:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-16 09:00 - 2014-09-18 20:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-16 09:00 - 2014-09-18 19:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-16 09:00 - 2014-09-18 19:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-16 09:00 - 2014-09-18 19:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-16 09:00 - 2014-09-18 19:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-16 09:00 - 2014-09-18 19:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-16 09:00 - 2014-09-18 19:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-16 09:00 - 2014-09-18 19:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-16 09:00 - 2014-09-18 19:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-16 09:00 - 2014-09-18 19:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-16 09:00 - 2014-09-18 19:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-16 09:00 - 2014-09-18 19:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-16 09:00 - 2014-09-18 19:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-16 09:00 - 2014-09-18 19:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-16 09:00 - 2014-09-18 19:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-16 09:00 - 2014-09-18 19:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-16 09:00 - 2014-09-18 19:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-16 09:00 - 2014-09-18 19:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-16 09:00 - 2014-09-18 18:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-16 09:00 - 2014-09-18 18:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-16 09:00 - 2014-09-18 18:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-16 09:00 - 2014-09-18 18:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-16 09:00 - 2014-06-18 17:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-16 08:59 - 2014-09-17 21:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-16 08:59 - 2014-09-17 20:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-16 08:59 - 2014-09-12 20:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-16 08:59 - 2014-09-12 20:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-16 08:59 - 2014-09-04 00:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-16 08:59 - 2014-09-04 00:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-16 08:59 - 2014-07-16 21:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-16 08:59 - 2014-07-16 21:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-16 08:59 - 2014-07-16 21:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-16 08:59 - 2014-07-16 20:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-16 08:59 - 2014-07-16 20:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-16 08:59 - 2014-07-16 20:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-16 08:59 - 2014-07-16 20:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-16 08:59 - 2014-07-16 20:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-16 08:59 - 2014-07-16 20:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-16 08:59 - 2014-07-16 20:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-16 08:59 - 2014-07-16 20:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-07 18:59 - 2010-09-23 17:31 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-07 18:59 - 2010-09-23 17:31 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-07 18:57 - 2009-07-13 23:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-07 18:57 - 2009-07-13 23:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-07 18:56 - 2009-10-23 21:48 - 01624399 _____ () C:\Windows\WindowsUpdate.log
2014-11-07 18:49 - 2014-02-24 17:41 - 00000580 _____ () C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-3339020092-2038940241-2761494359-1001.job
2014-11-07 18:44 - 2014-05-07 17:14 - 00000000 ___RD () C:\Users\Jennifer\Google Drive
2014-11-07 18:44 - 2012-12-25 16:04 - 00000000 ____D () C:\Program Files (x86)\CyberPower PowerPanel Personal Edition
2014-11-07 18:43 - 2011-02-26 14:02 - 00018972 _____ () C:\Windows\error.log
2014-11-07 18:43 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-07 18:43 - 2009-07-13 23:51 - 00052673 _____ () C:\Windows\setupact.log
2014-11-07 18:42 - 2014-01-25 12:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-07 18:42 - 2011-02-26 14:02 - 00006143 _____ () C:\Windows\errord.log
2014-11-07 18:42 - 2009-08-21 21:36 - 00347320 _____ () C:\Windows\PFRO.log
2014-11-07 18:37 - 2012-06-30 09:30 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-07 14:29 - 2009-12-17 21:40 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{C91BC408-A2EA-4401-8350-92347ADC3703}
2014-11-07 09:50 - 2014-09-19 08:33 - 00003204 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForJennifer
2014-11-07 09:50 - 2014-09-19 08:33 - 00000344 _____ () C:\Windows\Tasks\HPCeeScheduleForJennifer.job
2014-11-05 12:59 - 2014-05-07 17:11 - 00002048 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2014-11-05 12:59 - 2014-05-07 17:11 - 00002046 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2014-11-05 12:59 - 2014-05-07 17:11 - 00002036 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2014-11-05 12:59 - 2014-05-07 17:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-11-05 10:26 - 2014-02-26 03:05 - 00799604 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-11-03 20:03 - 2014-04-22 16:36 - 00000000 ____D () C:\Users\dub_cm_auto
2014-11-03 20:03 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Default
2014-11-03 19:57 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini
2014-11-03 19:49 - 2009-12-17 20:43 - 00000000 ____D () C:\Users\Jennifer
2014-11-03 18:41 - 2010-02-08 12:12 - 00000000 ____D () C:\Users\Jennifer\AppData\Local\CrashDumps
2014-11-02 12:45 - 2009-07-14 00:13 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-02 12:33 - 2010-09-23 17:31 - 00000000 ____D () C:\Program Files\Google
2014-11-02 12:33 - 2010-09-23 17:31 - 00000000 ____D () C:\Program Files (x86)\Google
2014-11-02 11:57 - 2010-09-23 17:31 - 00000000 ____D () C:\Users\Jennifer\AppData\Local\Google
2014-11-02 11:57 - 2010-09-23 17:31 - 00000000 ____D () C:\ProgramData\Google
2014-10-31 13:41 - 2011-01-20 10:51 - 00000000 ____D () C:\Program Files (x86)\Coupons
2014-10-31 10:34 - 2013-06-09 14:07 - 00000000 ____D () C:\Users\Jennifer\Documents\BHS Expense Reports
2014-10-31 09:50 - 2009-12-17 21:00 - 00000552 _____ () C:\Windows\Tasks\PCDRScheduledMaintenance.job
2014-10-31 09:00 - 2011-07-22 15:16 - 00037263 _____ () C:\Windows\system32\lvcoinst.log
2014-10-25 01:53 - 2014-02-24 17:41 - 00003608 _____ () C:\Windows\System32\Tasks\G2MUpdateTask-S-1-5-21-3339020092-2038940241-2761494359-1001
2014-10-23 18:03 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-10-20 17:51 - 2010-09-23 17:31 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-20 17:51 - 2010-09-23 17:31 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-18 03:45 - 2009-07-13 23:45 - 00431664 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-18 03:39 - 2014-05-07 02:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-18 02:52 - 2009-12-17 21:56 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-18 02:34 - 2013-08-15 02:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-18 02:13 - 2009-12-17 20:54 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Jennifer\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-05 00:41

==================== End Of Log ============================



#9 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:15 PM

Posted 08 November 2014 - 06:24 AM

Step 1

frst.pngfrstfix.png
Please download the attached fixlist txt.gif and save it in the same directory as FRST.
  • Start FRST with Administrator privileges.
  • Press the Fix button.
  • When finished, a log file (Fixlog.txt) pops up and is saved to the same location the tool was run from.
    Please copy and paste its contents in your next reply.
Attached File  fixlist.txt   931bytes   3 downloads

Let's do a final check up:

Step 2


Don't remove on your own anything that Hitman Pro detects!
This scanner, as it is a really good for checking, has been known for deleting files instead of curing them, which in some cases may render the machine unbootable.
Any removals will be done manually after careful analysis of the scan results!


Please download hitmanpro_32.pngHitmanPro 32-bit / HitmanPro 64-bit by SurfRight and save it to your desktop.
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.
  • Right-click onhitmanpro.pngicon and select admin.PNGRun as Administrator to start the tool.
  • If the program won't run please run it while holding down the left CTRL key until it's loaded!
  • Click on the Next button (1). You must agree with the terms of EULA (2 - if asked).
  • Check the box beside "No, I only want to perform a one-time scan to check this computer" and click on the Next button. (3)
  • The program will start to scan the computer. It would only take several minutes.
  • When the scan is done click on Save Log (4) and close HitmanPro! (5)
  • Copy and paste the content of the log file in your next reply.
hitman.gif


Step 3

Please downloadesetlogo.pngOnline Scanner and save it to your Desktop.
  • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
  • Start installer.pngwith administartor privileges.
  • Select the option Yes, I accept the Terms of Use and click on Start.
  • Choose the following settings:
settings.png
  • Click on Start. The virus signature database will begin to download. This may take some time.
  • When completed the Online Scan will begin automatically.
    Note: This scan might take a long time! Please be patient.
  • When completed select Uninstall application on close if you so wish, but make sure you copy the logfile first!
  • Now click on Finish
  • A log filelog.pngis created at logpath.png
    Copy and paste the content of this log file in your next reply.
Note: Do not forget to re-enable your antivirus application after running the above scan!
eset.gif

Step 4
frst.pngfrstscan.png

Start FRST with administator privileges.
  • Press the Scan button.
  • When finished, FRST will produce a log (FRST.txt) in the same directory the tool was run from.
    Please copy and paste the log in your next reply.
lesestoff.png

Can you please tell me which problems still persist now?
How is the computer running

Edited by deeprybka, 08 November 2014 - 06:24 AM.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#10 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:15 PM

Posted 12 November 2014 - 01:34 PM

Hi,

4 Day Inactivity

This is the third day since my last post. Are you still there?

If you need more time, just let me know.

If you do not post within 24 hours, this thread will be closed due to inactivity.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#11 Uncle Gary

Uncle Gary
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 12 November 2014 - 06:54 PM

Thank you for the updat but I will need more time please.



#12 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:15 PM

Posted 13 November 2014 - 10:26 AM

OK... :)

 

Thanks for letting me know...


regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#13 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:15 PM

Posted 16 November 2014 - 09:51 AM

Hi,

3 Day Inactivity

This is the third day since my last post. Are you still there?

If you need more time, just let me know.

If you do not post within 48 hours, this thread will be closed due to inactivity.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#14 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:15 PM

Posted 18 November 2014 - 11:52 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#15 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:15 PM

Posted 18 November 2014 - 11:52 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users