Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Poweliks (multiple DLLHosts), but unable to install ComboFix


  • This topic is locked This topic is locked
16 replies to this topic

#1 LThumim

LThumim

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 06 November 2014 - 05:33 PM

Hello,

 

When my computer's infected, I usually try to read up and fix it myself.  It seems like I clearly have Poweliks (I have those multiple DLLhost.exe files, and AVG is also telling me it's there).  I saw that ComboFix is generally used to clean it up (or at least start the process), but I've been unable to install ComboFix.  When I try, it gets through the dialog box but then fails and gives me a Windows alert that itcan't find CF8170.3XE

 

I figured I'd throw myself at the mercy of these forums and the seemingly incredibly people who help here. 

 

Log is below and attached.  Thanks so much in advance!

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17344  BrowserJavaVersion: 10.71.2
Run by Leron at 17:21:01 on 2014-11-06
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
mWinlogon: Userinit = userinit.exe,
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll
BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
uRun: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
uRun: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r
mRun: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickFinder Scheduler] "c:\Program Files (x86)\Corel\WordPerfect Office X4\Programs\QFSCHD140.EXE"
mRun: [VERIZONDM] "C:\Program Files (x86)\VERIZONDM\bin\sprtcmd.exe" /P VERIZONDM
mRun: [Monitor] "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
mRun: [Redirector] "C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
mRun: [tvncontrol] "C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave
mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\Users\Leron\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DELLDO~1.LNK - C:\Program Files\Dell\DellDock\DellDock.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\CRASHP~1.LNK - C:\Program Files\CrashPlan\CrashPlanTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\VPNGUI~1.LNK - C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Open with WordPerfect - c:\Program Files (x86)\Corel\WordPerfect Office X4\Programs\WPLauncher.hta
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
   If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
DPF: {A6AD2813-EDAC-4CAA-B7A3-431EC0758C2D} - hxxps://relativity.ldiscovery.com/Relativity/ActiveX/webclientmanager.cab
DPF: {B805D226-4CA5-499C-A8CA-3E61CF947A5D} - hxxps://review6.quinnltas.com/Public/cab/c8be74aa-e404-434e-8151-d1c702987d6f.cab
DPF: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{27B76321-4E0F-47CC-A19C-66E764FCC085} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{BA165970-3A2A-48EC-A261-A202B4871521} : DHCPNameServer = 192.168.1.1
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.9\ViProtocol.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Eudora's Shell Extension - {EDB0E980-90BD-11D4-8599-0008C7D3B6F8} - C:\My Entire Old Drive\Internet\Bear Access\winba\eudora\EuShlExt.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} -
x64-Run: [RunDLLEntry_THXCfg] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\THXCfg64.dll,RunDLLEntry THXCfg64
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
.
INFO: x64-HKLM has more than 50 listed domains.
   If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.aol.com/search/search?query={searchTerms}&invocationType=tb50-ff-aimright-chromesbox-en-us&tb_uuid=20100926153402384&tb_oid=26-04-2010&tb_mrud=14-06-2012
FF - prefs.js: browser.startup.homepage - hxxp://www.aol.com/?mtmhp=hyplogusaolp00000013
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=mcafee&p=
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll
FF - plugin: C:\Program Files (x86)\Citrix\ICA Client\npURLInterceptorPlugin.dll
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2014-11-06 22:07:36 -------- d-----w- C:\ComboFix
2014-11-06 21:22:51 331 ----a-w- C:\Start_.cmd
2014-11-04 09:57:35 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-11-04 06:15:46 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-11-04 06:14:54 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-11-04 06:14:54 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-11-04 06:14:53 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin5.dll
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin4.dll
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin3.dll
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin2.dll
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin.dll
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
2014-11-02 01:36:56 159744 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
2014-11-02 01:31:32 -------- d-----w- C:\Program Files\iPod
2014-11-02 01:31:31 -------- d-----w- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-11-02 01:31:31 -------- d-----w- C:\Program Files\iTunes
2014-11-02 01:31:31 -------- d-----w- C:\Program Files (x86)\iTunes
2014-10-15 10:58:03 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-10-15 10:55:59 77312 ----a-w- C:\Windows\System32\packager.dll
2014-10-15 10:55:58 67072 ----a-w- C:\Windows\SysWow64\packager.dll
.
==================== Find3M  ====================
.
2014-10-10 02:05:59 276480 ----a-w- C:\Windows\System32\generaltel.dll
2014-10-10 02:05:42 507392 ----a-w- C:\Windows\System32\aepdu.dll
2014-10-10 02:00:38 424448 ----a-w- C:\Windows\System32\aeinv.dll
2014-10-02 18:23:20 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
2014-10-02 18:23:20 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
2014-10-01 16:11:12 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-09-25 22:32:04 2017280 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-09-25 22:31:02 2108416 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-09-25 02:08:38 371712 ----a-w- C:\Windows\System32\qdvd.dll
2014-09-25 01:40:50 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2014-09-24 03:23:12 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-09-24 03:23:12 701104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-09-19 01:56:02 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-09-19 01:55:49 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-09-19 01:40:43 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-09-19 01:40:03 547328 ----a-w- C:\Windows\System32\vbscript.dll
2014-09-19 01:39:58 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-09-19 01:38:27 83968 ----a-w- C:\Windows\System32\MshtmlDac.dll
2014-09-19 01:36:57 5829632 ----a-w- C:\Windows\System32\jscript9.dll
2014-09-19 01:26:00 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-09-19 01:25:49 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-09-19 01:25:12 4201472 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-09-19 01:25:09 758272 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-09-19 01:18:02 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-09-19 01:14:57 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-09-19 01:06:47 72704 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-09-19 01:02:07 454656 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-09-19 01:01:47 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-09-19 01:01:03 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-09-19 00:59:40 61952 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2014-09-19 00:50:16 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-09-19 00:49:31 597504 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-09-19 00:40:12 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-09-19 00:36:23 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-09-19 00:33:18 2309632 ----a-w- C:\Windows\System32\wininet.dll
2014-09-19 00:18:55 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-09-18 23:59:11 1810944 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-09-18 02:00:42 3241472 ----a-w- C:\Windows\System32\msi.dll
2014-09-18 01:32:52 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2014-09-09 22:11:04 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-09-09 21:47:10 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-09-04 05:23:20 424448 ----a-w- C:\Windows\System32\rastls.dll
2014-09-04 05:04:15 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
2014-08-23 02:07:00 404480 ----a-w- C:\Windows\System32\gdi32.dll
2014-08-23 01:45:55 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2014-08-19 03:11:28 693176 ----a-w- C:\Windows\System32\winload.efi
2014-08-19 03:10:10 616352 ----a-w- C:\Windows\System32\winresume.efi
2014-08-19 03:08:04 503808 ----a-w- C:\Windows\System32\srcore.dll
2014-08-19 03:08:04 50176 ----a-w- C:\Windows\System32\srclient.dll
2014-08-19 03:08:03 63488 ----a-w- C:\Windows\System32\setbcdlocale.dll
2014-08-19 03:07:51 58880 ----a-w- C:\Windows\System32\appidapi.dll
2014-08-19 03:07:51 32256 ----a-w- C:\Windows\System32\appidsvc.dll
2014-08-19 03:07:33 296960 ----a-w- C:\Windows\System32\rstrui.exe
2014-08-19 03:07:11 17920 ----a-w- C:\Windows\System32\appidcertstorecheck.exe
2014-08-19 03:07:11 146944 ----a-w- C:\Windows\System32\appidpolicyconverter.exe
2014-08-19 02:41:39 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2014-08-19 02:41:22 50688 ----a-w- C:\Windows\SysWow64\appidapi.dll
2014-08-19 02:06:56 61440 ----a-w- C:\Windows\System32\drivers\appid.sys
2014-08-11 14:39:47 50976 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
.
============= FINISH: 17:24:20.40 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:53 AM

Posted 09 November 2014 - 12:45 PM

Hi & :welcome: to Bleeping Computer Forums!
My name is Jürgen and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully: :exclame:
  • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
  • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.
  • If I don't reply within 24 hours please PM me!
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
Step 1
logo.png
Please download Powelikscleaner (by ESET) and save it to your Desktop.
  • Double-click the 3.png to start the tool.
  • Read the terms of the End-user license agreement and click Agree if you agree to them.
  • The tool will run automatically. If the cleaner finds a Poweliks infection, press the Y key on your keyboard to remove it.
  • If Poweliks was detected "Win32/Poweliks was successfully removed from your system" will be displayed. Press any key to exit the tool and reboot your PC.
  • The tool will produce a log in the same directory the tool was run from.
  • Please copy and paste the log in your next reply.
1.png
2.png

Step 2

Please run a FRST scan. This will help us diagnose your problem.

frst.pngfrstscan.png
Please download Farbar Recovery Scan Tool and save it to your Desktop.
(If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)
  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#3 LThumim

LThumim
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 09 November 2014 - 05:16 PM

Fantastic, thank you so much for the reply.  I ran both of the programs you said to run.

 

The log from the ESET Poweliks cleaner is below.  It is too long for one post, so I am breaking it up into two.

 

[2014.11.09 17:00:26.634] - Begin
[2014.11.09 17:00:26.634] -
[2014.11.09 17:00:26.634] -     ....................................
[2014.11.09 17:00:26.634] -   ..::::::::::::::::::....................
[2014.11.09 17:00:26.634] -   .::EEEEEE:::SSSSSS::..EEEEEE..TTTTTTTT..    Win32/Poweliks
[2014.11.09 17:00:26.634] -  .::EE::::EE:SS:::::::.EE....EE....TT......   Version: 1.0.0.1
[2014.11.09 17:00:26.634] -  .::EEEEEEEE::SSSSSS::.EEEEEEEE....TT......   Built: Oct 15 2014
[2014.11.09 17:00:26.634] -  .::EE:::::::::::::SS:.EE..........TT......
[2014.11.09 17:00:26.634] -   .::EEEEEE:::SSSSSS::..EEEEEE.....TT.....    Copyright © ESET, spol. s r.o.
[2014.11.09 17:00:26.634] -   ..::::::::::::::::::....................    1992-2013. All rights reserved.
[2014.11.09 17:00:26.634] -     ....................................
[2014.11.09 17:00:26.634] -
[2014.11.09 17:00:26.634] - --------------------------------------------------------------------------------
[2014.11.09 17:00:26.634] -
[2014.11.09 17:00:26.644] - INFO: OS: 6.1.7601 SP1
[2014.11.09 17:00:26.644] - INFO: Product Type: Workstation
[2014.11.09 17:00:26.644] - INFO: WoW64: True
[2014.11.09 17:00:26.644] - INFO: Machine guid: ED17BAB2-70AE-486F-96B1-8A59F7242C53
[2014.11.09 17:00:26.644] -
[2014.11.09 17:00:28.434] - INFO: Scanning for system infection...
[2014.11.09 17:00:28.434] - --------------------------------------------------------------------------------
[2014.11.09 17:00:28.434] -
[2014.11.09 17:00:28.434] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.09 17:00:28.434] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.09 17:00:28.454] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.09 17:00:28.454] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.09 17:00:28.494] - INFO: Processing classes...
[2014.11.09 17:00:28.544] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}]
[2014.11.09 17:00:28.544] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{07999AC3-058B-40BF-984F-69EB1E554CA7}]
[2014.11.09 17:00:28.544] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{5e4486b7-f404-43bf-aec4-3fd0b95ef0cb}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.554] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.564] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.574] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0056-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0056-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0056-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0057-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0057-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0057-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0058-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0058-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0058-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0059-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0059-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0059-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0060-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0060-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0060-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0061-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0061-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0061-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0062-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0062-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0062-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0063-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0063-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.584] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0063-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0064-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0064-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0064-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0065-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0065-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0065-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0066-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0066-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0066-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0067-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0067-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0067-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0068-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0068-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0068-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0069-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0069-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0069-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0070-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0070-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0070-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0071-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0071-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0071-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0072-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0072-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0072-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0073-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0073-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0073-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0074-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0074-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0074-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0075-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0075-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0075-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.594] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0066-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0066-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0066-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0067-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0067-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0067-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0068-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0068-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0068-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0069-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0069-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0069-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0070-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0070-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0070-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0071-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0071-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0071-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0072-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0072-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0072-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0073-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0073-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0073-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0074-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0074-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0074-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0075-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0075-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0075-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0076-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0076-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0076-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0077-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0077-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0077-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0078-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0078-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0078-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0079-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0079-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0079-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0080-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0080-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0080-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0081-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0081-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0081-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0082-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0082-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0082-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0083-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0083-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0083-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0084-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0084-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0084-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0085-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0085-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0085-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.604] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0046-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0046-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0046-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0047-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0047-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0047-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0048-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0048-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0048-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0049-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0049-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0049-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0050-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0050-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0050-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0051-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0051-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0052-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0052-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0052-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0053-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0053-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0053-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0054-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0054-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0054-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0055-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0055-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0056-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0056-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0056-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0057-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0057-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0057-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0058-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0058-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0058-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0059-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0059-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0059-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0060-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0060-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0060-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0061-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0061-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0061-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0062-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0062-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0062-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0063-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0063-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0063-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0064-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0064-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0064-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0065-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0065-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0065-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0066-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0066-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0066-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0067-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0067-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0067-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0068-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0068-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0068-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0069-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0069-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0069-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0070-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0070-ABCDEFFEDCBB}]
 


Continuation of the ESET Poweliks cleaner log below.  FRST is still running, and I will post that log when it is done.

 

[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0070-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0071-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0071-ABCDEFFEDCBB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0071-ABCDEFFEDCBC}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{6a431500-8ea3-4129-b0fa-7ab508c65975}]
[2014.11.09 17:00:28.614] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2014.11.09 17:00:28.614] - WARNING: Found suspicous classid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2014.11.09 17:00:28.614] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.09 17:00:28.624] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.09 17:00:28.624] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.09 17:00:28.624] - INFO: Processing invalid values in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.09 17:00:28.624] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.09 17:00:28.624] - INFO: Processing value [ServerExecutable] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.09 17:00:28.624] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.09 17:00:28.624] - INFO: Processing value [ServerExecutable] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.09 17:00:28.624] - INFO: Processing invalid subkeys in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.09 17:00:28.624] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]...
[2014.11.09 17:00:28.624] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.09 17:00:28.624] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.09 17:00:28.624] - INFO: Win32/Poweliks found
[2014.11.09 17:00:34.305] - INFO: process: dllhost.exe, pid 8564, parent 1280
[2014.11.09 17:00:34.305] - INFO: process: dllhost.exe, pid 5736, parent 8688
[2014.11.09 17:00:34.305] - INFO: Terminated process pid = 5736
[2014.11.09 17:00:34.305] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.09 17:00:34.305] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.09 17:00:34.315] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.09 17:00:34.315] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.09 17:00:34.315] - INFO: Processing classes...
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{07999AC3-058B-40BF-984F-69EB1E554CA7}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{5e4486b7-f404-43bf-aec4-3fd0b95ef0cb}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.325] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.335] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.345] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0056-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0056-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0056-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0057-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0057-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0057-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0058-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0058-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0058-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0059-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0059-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0059-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0060-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0060-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0060-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0061-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0061-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0061-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0062-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0062-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0062-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0063-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0063-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0063-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0064-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0064-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0064-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0065-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0065-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0065-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0066-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0066-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0066-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0067-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0067-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0067-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0068-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0068-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0068-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0069-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0069-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0069-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0070-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0070-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0070-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0071-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0071-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0071-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0072-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0072-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0072-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0073-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0073-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0073-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0074-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0074-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0074-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0075-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0075-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0075-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.355] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0066-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0066-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0066-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0067-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0067-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0067-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0068-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0068-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0068-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0069-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0069-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0069-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0070-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0070-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0070-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0071-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0071-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0071-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0072-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0072-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0072-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0073-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0073-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0073-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0074-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0074-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0074-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0075-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0075-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0075-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0076-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0076-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0076-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0077-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0077-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0077-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0078-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0078-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0078-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0079-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0079-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0079-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0080-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0080-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0080-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0081-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0081-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0081-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0082-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0082-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0082-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0083-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0083-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0083-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0084-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0084-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0084-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0085-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0085-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0085-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.365] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0046-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0046-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0046-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0047-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0047-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0047-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0048-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0048-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0048-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0049-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0049-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0049-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0050-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0050-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0050-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0051-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0051-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0052-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0052-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0052-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0053-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0053-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0053-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0054-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0054-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0054-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0055-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0055-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0056-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0056-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0056-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0057-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0057-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0057-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0058-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0058-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0058-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0059-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.375] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0059-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0059-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0060-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0060-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0060-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0061-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0061-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0061-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0062-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0062-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0062-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0063-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0063-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0063-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0064-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0064-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0064-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0065-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0065-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0065-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0066-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0066-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0066-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0067-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0067-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0067-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0068-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0068-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0068-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0069-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0069-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0069-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0070-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0070-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0070-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0071-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0071-ABCDEFFEDCBB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0071-ABCDEFFEDCBC}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-FFFF-ABCDEFFEDCBA}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{6a431500-8ea3-4129-b0fa-7ab508c65975}]
[2014.11.09 17:00:34.385] - INFO: Processing clsid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2014.11.09 17:00:34.385] - INFO: Deleted classid [\Registry\User\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2014.11.09 17:00:34.385] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.09 17:00:34.385] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.09 17:00:34.385] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.09 17:00:34.385] - INFO: Processing invalid values in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.09 17:00:34.385] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.09 17:00:34.385] - INFO: Processing value [ServerExecutable] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.09 17:00:34.385] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.09 17:00:34.385] - INFO: Processing value [ServerExecutable] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.09 17:00:34.385] - INFO: Processing invalid subkeys in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.09 17:00:34.385] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]...
[2014.11.09 17:00:34.385] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.09 17:00:34.385] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.09 17:00:34.385] - INFO: Cleaning status: 0
[2014.11.09 17:00:39.146] - End
 


And here is the FRST log.  Again, thank you so much for your help!

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-11-2014 01
Ran by Leron at 2014-11-09 17:14:09
Running from C:\Users\Leron\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: COMODO Antivirus (Enabled - Out of date) {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
AS: COMODO Antivirus (Enabled - Up to date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
AIM 7 (HKLM-x32\...\AIM_7) (Version:  - )
AMD Catalyst Install Manager (HKLM\...\{353D1262-B2D2-AD87-EB5E-6B1395AF9FAE}) (Version: 3.0.868.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Control Center (HKLM-x32\...\{055EE59D-217B-43A7-ABFF-507B966405D8}) (Version: 2.009.1211.1546 - )
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4765 - AVG Technologies)
AVG 2014 (Version: 14.0.4189 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4765 - AVG Technologies) Hidden
AVG Security Toolbar (HKLM-x32\...\AVG Secure Search) (Version: 18.1.9.799 - AVG Technologies)
Banctec Service Agreement (HKLM-x32\...\{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}) (Version: 2.0.0 - Dell Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
ccc-core-static (x32 Version: 2009.1211.1547.28237 - ATI) Hidden
Cisco Systems VPN Client 5.0.07.0290 (HKLM\...\{467D5E81-8349-4892-9E81-C3674ED8E451}) (Version: 5.0.7 - Cisco Systems, Inc.)
Citrix QE Custom Settings (HKLM-x32\...\{907BCBF7-FB1A-4E74-8AB6-3F092A57F719}) (Version: 1.1 - Quinn Emanuel)
Citrix QE Trusted Sites (HKLM-x32\...\{45555A09-9209-4A44-81E9-437A17970F36}) (Version: 1.0.1 - QE LLP)
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.0.1.4 - Citrix Systems, Inc.)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.0 - COMODO)
COMODO Internet Security Premium (HKLM\...\{901D1D88-408D-48E5-80DD-CC3145BD8456}) (Version: 6.3.39949.2976 - COMODO Security Solutions Inc.)
CrashPlan (HKLM\...\{FCE35118-DD2F-4DB8-A5B6-D857F95669E0}) (Version: 3.5.3 - CrashPlan)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 2.41 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.48 - Dell)
Dell DataSafe Online (HKLM-x32\...\{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}) (Version: 1.2.0009 - Dell, Inc.)
Dell Dock (HKLM-x32\...\Dell Dock) (Version:  - Stardock Corporation)
Dell Dock (Version: 2.0 - Stardock Corporation) Hidden
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DirectXInstallService (x32 Version: 9.0.2 - Roxio) Hidden
Download Updater (AOL LLC) (HKLM-x32\...\SoftwareUpdUtility) (Version:  - ) <==== ATTENTION
EMC 10 Content (x32 Version: 1.0.035 - Roxo, Inc.) Hidden
EMCGadgets64 (Version: 1.0.302 - Sonic) Hidden
FileZilla Client 3.7.3 (HKLM-x32\...\FileZilla Client) (Version: 3.7.3 - Tim Kosse)
Free Download Manager 3.8 (HKLM-x32\...\Free Download Manager_is1) (Version:  - FreeDownloadManager.ORG)
GeekBuddy (HKLM\...\{EC4E385C-4B7D-4FDD-9F0C-C91B116AD243}) (Version: 4.10.79 - Comodo Security Solutions Inc)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
iCloud (HKLM\...\{6096C0CC-7E19-4355-87F0-627EC5AA146D}) (Version: 4.0.3.56 - Apple Inc.)
IHA_MessageCenter (HKLM-x32\...\{329445EA-EBA3-45A0-A7A7-B6A6555DB881}) (Version: 1.8.53 - Verizon)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.0.1006 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.0.1037 - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LeapFrog Connect (HKLM-x32\...\UPCShell) (Version: 5.3.0.18537 - LeapFrog)
LeapFrog Connect (x32 Version: 5.3.0.18537 - LeapFrog) Hidden
LeapFrog My Pals Plugin (x32 Version: 5.1.26.18340 - LeapFrog) Hidden
LeapFrog Tag Junior Plugin (x32 Version: 5.1.26.18340 - LeapFrog) Hidden
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
MCEBuddy 2.1 (HKLM\...\{0D3796AA-D867-4278-AEBC-3616AD1F7C3A}) (Version: 2.1.2 - MCEBuddy)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MobileMe Control Panel (HKLM\...\{AF5020D9-116A-46AC-A922-087592F37EC9}) (Version: 3.1.8.0 - Apple Inc.)
Mozilla Firefox 32.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mumble and Murmur (HKLM-x32\...\Mumble) (Version: 1.2.2 - Mumble)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
myfantasyleague.com Game Day 2014 (HKLM-x32\...\mflGameDay_is1) (Version: 1.0 - Sideline Software, Inc.)
Nitro PDF Reader (HKLM\...\{0CB41726-DEBA-46E1-B48B-873F012ACAA1}) (Version: 1.3.2.1 - Nitro PDF Software)
Online Plug-in (x32 Version: 14.0.1.4 - Citrix Systems, Inc.) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PowerDVD DX (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 8.3.6029 - CyberLink Corp.)
PrimoPDF -- brought to you by Nitro PDF Software (HKLM-x32\...\PrimoPDF) (Version: 5 - Nitro PDF Software)
Quest for Glory II (HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Quest for Glory II) (Version:  - )
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5953 - Realtek Semiconductor Corp.)
Relativity Web Client 7.5 (HKLM-x32\...\{DE134208-FE69-47A6-A928-EE42A32E0B7F}) (Version: 7.5.63028 - kCura Corporation)
Relativity Web Client 8.1 (HKLM-x32\...\{BB2996F9-C522-470D-B9D4-CC8E14867887}) (Version: 8.1.26401 - kCura Corporation)
Relativity Web Client Manager 7.5 (HKLM-x32\...\{7C465A40-87B2-4857-BC9D-3B9104F97A6F}) (Version: 7.5.63028 - kCura Corporation)
Relativity Web Client Manager 8.1 (HKLM-x32\...\{76AADA5D-A267-48A0-9B4E-499DA409535C}) (Version: 8.1.26401 - kCura Corporation)
Roxio Easy CD and DVD Burning (HKLM-x32\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio)
Roxio File Backup (Version: 1.3.0 - Roxio) Hidden
Safari (HKLM-x32\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
Shutterfly Express Uploader (HKLM-x32\...\com.Shutterfly.ExpressUploader) (Version: 1.2.0.0 - Shutterfly, Inc.)
Shutterfly Express Uploader (x32 Version: 1.2.0 - Shutterfly, Inc.) Hidden
Skins (x32 Version: 2009.1211.1547.28237 - ATI) Hidden
Skype Toolbars (HKLM-x32\...\{981029E0-7FC9-4CF3-AB39-6F133621921A}) (Version: 1.0.4051 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Starflight 1 and 2 (HKLM-x32\...\GOGPACKSTARFLIGHT1AND2_is1) (Version: 2.0.0.19 - GOG.com)
THX TruStudio PC (HKLM-x32\...\{010A785B-F920-4350-821B-6309909C20BB}) (Version: 1.0 - Creative Technology Limited)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Use the entry named LeapFrog Connect to uninstall (LeapFrog My Pals Plugin) (HKLM-x32\...\MyPalsPlugin) (Version:  - LeapFrog)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Junior Plugin) (HKLM-x32\...\TagJuniorPlugin) (Version:  - LeapFrog)
VD64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Ventrilo Client (HKLM-x32\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.7 - Flagship Industries, Inc.)
Verizon Download Manager (HKLM-x32\...\{A0760C09-B1F8-4620-9668-F361098981E6}) (Version: 25 - SupportSoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vz In-Home Agent (HKLM-x32\...\VzInHomeAgent) (Version: 9.0.65.0 - Verizon)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.1 - WebM Project)
Windows Driver Package - LeapFrog (FlyUsb) USB  (11/05/2008 1.1.1.0) (HKLM\...\781745E87AFF80C0C1388CFF79D19ECAB2E9BB47) (Version: 11/05/2008 1.1.1.0 - LeapFrog)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (HKLM\...\8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D) (Version: 09/10/2009 02.03.05.012 - Leapfrog)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Wing Commander Saga 1.0.2.7795 (HKLM\...\{F6FD24B4-34A3-4635-8ECD-7B5C791EAE5F}) (Version: 1.0.2.7795 - Wing Commander Saga Team)
WordPerfect Office X4 - Common (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Content (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - EN (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Filters (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Graphics (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - ICA (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - IPM (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - IPM EN (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Migration Manager (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - PerfectExperts (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - PR (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - QP (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Skins (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - System (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - WP (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 (HKLM-x32\...\_{DCDAB2ED-5741-4C30-A1A4-0FCB8A529001}) (Version:  - Corel Corporation)
WordPerfect Office X4 (x32 Version: 14.0 - Corel Corporation) Hidden
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: 5.4.0.17399 - Blizzard Entertainment)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3521837321-3699816946-3115604090-1001_Classes\CLSID\{6a431500-8ea3-4129-b0fa-7ab508c65975}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)

==================== Restore Points  =========================

04-11-2014 09:51:29 Installed Java 7 Update 71

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2011-09-08 18:34 - 00437405 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 1000 more lines.

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {239DBD94-9337-42EE-B94D-A9F2C2FFF9FA} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {2A39ECEC-AB6A-42A2-8FD6-9418B040337D} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {2F2A7ECE-2053-4AB8-A7F7-EB1B9613D63C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {4AA8C7AE-604A-487F-B68E-EDF9C514131D} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {4E84B648-1DAF-4342-8CA3-98CE3B37A939} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-14] (Google Inc.)
Task: {64FE14F8-4678-475B-9DFF-F72C3C873ECC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-23] (Adobe Systems Incorporated)
Task: {8111AC89-01E5-4B0D-9B3C-668E7EDBAA1C} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {9C5449A6-49AD-43FF-91FF-317414EEE2D8} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {B1D62DB4-9773-4630-92C3-2DB4DA7B8C0B} - System32\Tasks\{DDB4295B-8822-46CA-ABF3-F4A2BEB644A7} => Iexplore.exe http://www.skype.com/go/downloading?source=lightinstaller&amp;ver=5.1.0.112.259&amp;LastError=-3
Task: {BE994830-F0A3-4120-920E-126E8C8F7A0A} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {C479E68C-4774-420B-B751-AD36BE8AC356} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe [2013-01-17] ()
Task: {EB1B2F5A-873B-424E-AC5A-532C591E798A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-14] (Google Inc.)
Task: {EC45FD86-238A-46F6-8CC3-DFA827E596F4} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-31] (PC-Doctor, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe

==================== Loaded Modules (whitelisted) =============

2011-01-09 19:15 - 2009-12-20 20:42 - 00090624 _____ () C:\Windows\System32\Primomonnt.dll
2013-04-08 18:35 - 2013-04-08 18:35 - 00014848 _____ () C:\Program Files\CrashPlan\md564.dll
2014-10-20 13:54 - 2014-10-20 13:54 - 00230400 _____ () C:\Program Files\CrashPlan\cpnative64.dll
2014-05-21 05:22 - 2014-05-21 05:22 - 02135232 _____ () C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
2012-02-20 15:43 - 2012-02-20 15:43 - 00016896 _____ () C:\Program Files\MCEBuddy\MCEBuddy.Service.exe
2012-02-20 15:41 - 2012-02-20 15:41 - 00035328 _____ () C:\Program Files\MCEBuddy\MCEBuddy.Engine.dll
2012-02-20 15:44 - 2012-02-20 15:44 - 00030208 _____ () C:\Program Files\MCEBuddy\MCEBuddy.Util.dll
2012-02-20 15:44 - 2012-02-20 15:44 - 00011264 _____ () C:\Program Files\MCEBuddy\MCEBuddy.Globals.dll
2010-01-02 09:42 - 2010-01-02 09:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-08-11 09:40 - 2014-08-11 09:39 - 00159768 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe
2014-10-19 12:11 - 2014-10-19 12:11 - 00472576 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\c29d8779b3a3599f44e21e017541cd0c\VistaBridgeLibrary.ni.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 01807600 _____ () C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
2013-12-22 08:54 - 2014-08-26 00:18 - 02640408 _____ () C:\Program Files (x86)\AVG Secure Search\vprot.exe
2013-04-15 17:39 - 2013-04-15 17:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2014-09-21 13:49 - 2014-08-18 10:35 - 03246592 _____ () C:\Program Files (x86)\myfantasyleague\Gameday.exe
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-03-23 13:26 - 2010-03-23 13:26 - 00201512 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll
2010-05-25 13:02 - 2010-07-21 11:33 - 00058688 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STCoreXml.dll
2010-05-25 13:02 - 2010-07-21 11:33 - 00116032 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
2010-05-25 13:02 - 2010-07-21 11:33 - 00128320 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
2014-08-11 09:40 - 2014-08-11 09:39 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\log4cplusU.dll
2010-05-25 12:55 - 2009-10-02 13:18 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00275696 _____ () C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00058608 _____ () C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00095472 _____ () C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00152816 _____ () C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00017648 _____ () C:\Program Files (x86)\Dell DataSafe Online\cpputils.dll
2013-12-22 08:54 - 2014-03-21 00:32 - 01603608 _____ () C:\Program Files (x86)\AVG Secure Search\TBAPI.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Karen\Desktop\passport.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Karen\Desktop\passport.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\34262119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\34262119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

Administrator (S-1-5-21-3521837321-3699816946-3115604090-500 - Administrator - Disabled)
Guest (S-1-5-21-3521837321-3699816946-3115604090-501 - Limited - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-3521837321-3699816946-3115604090-1002 - Limited - Enabled)
Karen (S-1-5-21-3521837321-3699816946-3115604090-1003 - Administrator - Enabled) => C:\Users\Karen
Leron (S-1-5-21-3521837321-3699816946-3115604090-1001 - Administrator - Enabled) => C:\Users\Leron

==================== Faulty Device Manager Devices =============

Name: Cisco Systems VPN Adapter for 64-bit Windows
Description: Cisco Systems VPN Adapter for 64-bit Windows
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: CVirtA
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/09/2014 05:03:46 PM) (Source: McLogEvent) (EventID: 5022) (User: NT AUTHORITY)
Description: MCSCAN32 Engine Initialisation failed.
Engine returned error : 1

Error: (11/09/2014 04:58:08 PM) (Source: VSS) (EventID: 12294) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002B39D0).

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (11/09/2014 04:58:08 PM) (Source: VSS) (EventID: 12294) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002B39D0).

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (11/09/2014 04:58:08 PM) (Source: VSS) (EventID: 12294) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002B39D0).

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (11/09/2014 04:58:08 PM) (Source: VSS) (EventID: 12294) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002B39D0).

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (11/09/2014 04:54:52 PM) (Source: MCEBuddy) (EventID: 0) (User: )
Description: MCEBuddy engine service failed to start. Error:System.InvalidOperationException: The ChannelDispatcher at 'net.pipe://localhost/MCEBuddy' with contract(s) '"ICore"' is unable to open its IChannelListener. ---> System.InvalidOperationException: A registration already exists for URI 'net.pipe://localhost/MCEBuddy'.
   at System.ServiceModel.Channels.UriPrefixTable`1.RegisterUri(Uri uri, HostNameComparisonMode hostNameComparisonMode, TItem item)
   at System.ServiceModel.Channels.ConnectionOrientedTransportManager`1.Register(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManager.Open(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManagerContainer.Open(SelectTransportManagersCallback selectTransportManagerCallback)
   at System.ServiceModel.Channels.NamedPipeChannelListener`2.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   --- End of inner exception stack trace ---
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.ServiceHostBase.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at MCEBuddy.Service.ServiceModule.OnStart(String[] args)

Error: (11/09/2014 04:54:45 PM) (Source: MCEBuddy) (EventID: 0) (User: )
Description: MCEBuddy engine service failed to stop. Error:System.ServiceModel.CommunicationException: There was an error writing to the pipe: The pipe is being closed. (232, 0xe8). ---> System.IO.IOException: The write operation failed, see inner exception. ---> System.ServiceModel.CommunicationException: There was an error writing to the pipe: The pipe is being closed. (232, 0xe8). ---> System.IO.PipeException: There was an error writing to the pipe: The pipe is being closed. (232, 0xe8).
   at System.ServiceModel.Channels.PipeConnection.StartSyncWrite(Byte[] buffer, Int32 offset, Int32 size, Object& holder)
   at System.ServiceModel.Channels.PipeConnection.WriteHelper(Byte[] buffer, Int32 offset, Int32 size, Boolean immediate, TimeSpan timeout, Object& holder)
   --- End of inner exception stack trace ---
   at System.ServiceModel.Channels.PipeConnection.WriteHelper(Byte[] buffer, Int32 offset, Int32 size, Boolean immediate, TimeSpan timeout, Object& holder)
   at System.ServiceModel.Channels.PipeConnection.Write(Byte[] buffer, Int32 offset, Int32 size, Boolean immediate, TimeSpan timeout)
   at System.ServiceModel.Channels.BufferedConnection.WriteNow(Byte[] buffer, Int32 offset, Int32 size, TimeSpan timeout, BufferManager bufferManager)
   at System.ServiceModel.Channels.BufferedConnection.Write(Byte[] buffer, Int32 offset, Int32 size, Boolean immediate, TimeSpan timeout)
   at System.ServiceModel.Channels.ConnectionStream.Write(Byte[] buffer, Int32 offset, Int32 count)
   at System.Net.Security.NegotiateStream.StartWriting(Byte[] buffer, Int32 offset, Int32 count, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.NegotiateStream.ProcessWrite(Byte[] buffer, Int32 offset, Int32 count, AsyncProtocolRequest asyncRequest)
   --- End of inner exception stack trace ---
   at System.Net.Security.NegotiateStream.ProcessWrite(Byte[] buffer, Int32 offset, Int32 count, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.NegotiateStream.Write(Byte[] buffer, Int32 offset, Int32 count)
   at System.ServiceModel.Channels.StreamConnection.Write(Byte[] buffer, Int32 offset, Int32 size, Boolean immediate, TimeSpan timeout)
   --- End of inner exception stack trace ---

Server stack trace:
   at System.ServiceModel.Channels.StreamConnection.Write(Byte[] buffer, Int32 offset, Int32 size, Boolean immediate, TimeSpan timeout)
   at System.ServiceModel.Channels.StreamConnection.Write(Byte[] buffer, Int32 offset, Int32 size, Boolean immediate, TimeSpan timeout, BufferManager bufferManager)
   at System.ServiceModel.Channels.FramingDuplexSessionChannel.OnSendCore(Message message, TimeSpan timeout)
   at System.ServiceModel.Channels.TransportDuplexSessionChannel.OnSend(Message message, TimeSpan timeout)
   at System.ServiceModel.Channels.OutputChannel.Send(Message message, TimeSpan timeout)
   at System.ServiceModel.Dispatcher.DuplexChannelBinder.Request(Message message, TimeSpan timeout)
   at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
   at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
   at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)

Exception rethrown at [0]:
   at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
   at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
   at MCEBuddy.Engine.ICore.StopBySystem()
   at MCEBuddy.Service.ServiceModule.OnStop()

Error: (11/09/2014 04:54:45 PM) (Source: MCEBuddy) (EventID: 0) (User: )
Description: MCEBuddy engine service failed to start. Error:System.InvalidOperationException: The communication object, System.ServiceModel.ServiceHost, cannot be modified while it is in the Opening state.
   at System.ServiceModel.Channels.CommunicationObject.ThrowIfDisposedOrImmutable()
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at MCEBuddy.Service.ServiceModule.OnStart(String[] args)

Error: (11/06/2014 08:40:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4024

Error: (11/06/2014 08:40:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4024

System errors:
=============
Error: (11/09/2014 05:03:48 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
RxFilter

Error: (11/09/2014 05:03:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SessionLauncher service failed to start due to the following error:
%%2

Error: (11/09/2014 04:54:21 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (11/06/2014 06:11:23 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (11/06/2014 06:11:23 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (11/06/2014 06:11:23 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (11/06/2014 06:11:23 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (11/06/2014 05:47:32 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (11/06/2014 05:47:32 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (11/06/2014 05:47:32 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Microsoft Office Sessions:
=========================
Error: (12/15/2011 03:00:09 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 11 seconds with 0 seconds of active time.  This session ended with a crash.

CodeIntegrity Errors:
===================================
  Date: 2014-10-13 21:17:17.241
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-10-13 21:17:17.051
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-10-13 21:17:16.844
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-10-13 21:17:16.637
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel® Core™ i7 CPU 860 @ 2.80GHz
Percentage of memory in use: 39%
Total physical RAM: 8151.08 MB
Available physical RAM: 4903.03 MB
Total Pagefile: 16300.34 MB
Available Pagefile: 12604.18 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:455.31 GB) (Free:102.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 8A427EA7)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=10.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=455.3 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#4 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:53 AM

Posted 09 November 2014 - 05:57 PM

Please post the FRST.txt as well... :)


regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#5 LThumim

LThumim
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 09 November 2014 - 06:20 PM

My mistake, here's the FRST.txt:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-11-2014 01
Ran by Leron (administrator) on LTSDESKTOP on 09-11-2014 17:10:48
Running from C:\Users\Leron\Desktop
Loaded Profile: Leron (Available profiles: Leron & Karen & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CrashPlan) C:\Program Files\CrashPlan\CrashPlanService.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Verizon) C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
() C:\Program Files\MCEBuddy\MCEBuddy.Service.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Reader\1.0\NitroPDFReaderDriverServicex64.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Code 42 Software, Inc.) C:\Program Files\CrashPlan\CrashPlanTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\sprtcmd.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
() C:\Program Files (x86)\AVG Secure Search\vprot.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
() C:\Program Files (x86)\myfantasyleague\Gameday.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RunDLLEntry_THXCfg] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8158240 2009-10-06] (Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1275608 2014-03-25] (COMODO)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe [963584 2009-12-01] (Creative Technology Ltd)
HKLM-x32\...\Run: [PDVDDXSrv] => C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520 2009-12-29] (CyberLink Corp.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2009-10-02] (Intel Corporation)
HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe [1807600 2009-11-13] ()
HKLM-x32\...\Run: [AppleSyncNotifier] => C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2012-02-23] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [QuickFinder Scheduler] => c:\Program Files (x86)\Corel\WordPerfect Office X4\Programs\QFSCHD140.EXE [83232 2008-03-21] (Corel Corporation)
HKLM-x32\...\Run: [VERIZONDM] => C:\Program Files (x86)\VERIZONDM\bin\sprtcmd.exe [206120 2012-06-02] (SupportSoft, Inc.)
HKLM-x32\...\Run: [Monitor] => C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe [106496 2014-01-22] (LeapFrog Enterprises, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395656 2013-09-16] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153992 2013-09-16] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5188112 2014-08-25] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [tvncontrol] => C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-12-13] (Comodo Security Solutions, Inc.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Secure Search\vprot.exe [2640408 2014-08-26] ()
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [79136 2008-10-24] (Macrovision Corporation)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [196608 2004-04-17] (InstallShield Software Corporation)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-08-07] (Apple Inc.)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [com.apple.dav.bookmarks.daemon] => C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1080104 2014-08-04] (Apple Inc.)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\MountPoints2: {5ba49ef6-50b0-11e0-a61a-b8ac6f9df27e} - I:\LaunchU3.exe -a
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CrashPlan Tray.lnk
ShortcutTarget: CrashPlan Tray.lnk -> C:\Program Files\CrashPlan\CrashPlanTray.exe (Code 42 Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk
ShortcutTarget: vpngui.exe.lnk -> C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CrashPlan Tray.lnk
ShortcutTarget: CrashPlan Tray.lnk -> C:\Program Files\CrashPlan\CrashPlanTray.exe (Code 42 Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk
ShortcutTarget: vpngui.exe.lnk -> C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe ()
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Karen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Karen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Leron\AppData\Roaming\Dropbox\bin\Dropbox.exe (No File)
Startup: C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\TEMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
BootExecute: autocheck autochk *  /sync /restart /sync /restart /sync /restart /sync /restart /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKLM - DefaultScope {0B4A10D1-FBD6-451d-BFDA-F03252B05984} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&query={searchTerms}&invocationType=tb50trie7
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKLM - {0B4A10D1-FBD6-451d-BFDA-F03252B05984} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&query={searchTerms}&invocationType=tb50trie7
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0B4A10D1-FBD6-451d-BFDA-F03252B05984} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2706&query={searchTerms}&invocationType=tb50-ie-aim-chromesbox-en-us&tb_uuid=20111124145929821&tb_oid=24-11-2011&tb_mrud=24-11-2011
SearchScopes: HKCU - {0B4A10D1-FBD6-451d-BFDA-F03252B05984} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&query={searchTerms}&invocationType=tb50trie7
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {7F9DA150-C307-4B0A-9B32-A2FA6407A252} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll No File
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: AVG Security Toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll (AVG Secure Search)
BHO-x32: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll (AVG Secure Search)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
DPF: HKLM-x32 {A6AD2813-EDAC-4CAA-B7A3-431EC0758C2D} https://relativity.ldiscovery.com/Relativity/ActiveX/webclientmanager.cab
DPF: HKLM-x32 {B805D226-4CA5-499C-A8CA-3E61CF947A5D} https://review6.quinnltas.com/Public/cab/c8be74aa-e404-434e-8151-d1c702987d6f.cab
DPF: HKLM-x32 {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.9\ViProtocol.dll (AVG Secure Search)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
ShellExecuteHooks-x32: Eudora's Shell Extension - {EDB0E980-90BD-11D4-8599-0008C7D3B6F8} - C:\My Entire Old Drive\Internet\Bear Access\winba\eudora\EuShlExt.dll [86016 2002-10-18] (Qualcomm Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default
FF DefaultSearchUrl: hxxp://search.aol.com/search/search?query={searchTerms}&invocationType=tb50-ff-aimright-chromesbox-en-us&tb_uuid=20100926153402384&tb_oid=26-04-2010&tb_mrud=14-06-2012
FF SearchEngineOrder.1: Blekko
FF Homepage: hxxp://www.aol.com/?mtmhp=hyplogusaolp00000013
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=mcafee&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.9\\npsitesafety.dll No File
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdnu.dll (AOL LLC)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdnupdater2.dll (AOL LLC)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\searchplugins\aim-search.xml
FF SearchPlugin: C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\searchplugins\aol-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-09-26]
FF Extension: DownloadHelper - C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-09-21]
FF Extension: AOL Messaging Toolbar - C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\Extensions\{c2f863cd-0429-48c7-bb54-db756a951760} [2013-09-30]
FF Extension: PDF Download - C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\Extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}.xpi [2011-06-15]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.9.799
FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.9.799 [2014-08-26]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\17.3.0.49\avg.crx []

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3242000 2014-08-25] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-25] (AVG Technologies CZ, s.r.o.)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70352 2013-12-13] (Comodo Security Solutions, Inc.)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 CrashPlanService; C:\Program Files\CrashPlan\CrashPlanService.exe [222720 2013-04-08] (CrashPlan) [File not signed]
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2009-06-09] (Stardock Corporation) [File not signed]
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-05-21] ()
R2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-12-13] (Comodo Security Solutions, Inc.)
R2 IHA_MessageCenter; C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [363128 2014-08-13] (Verizon)
R2 LeapFrog Connect Device Service; C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe [7393280 2014-01-22] (LeapFrog Enterprises, Inc.) [File not signed]
R2 MCEBuddy; C:\Program Files\MCEBuddy\MCEBuddy.Service.exe [16896 2012-02-20] () [File not signed]
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [199304 2012-05-25] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-04] (McAfee, Inc.)
R2 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [182752 2013-11-04] (McAfee, Inc.)
R2 NitroReaderDriverReadSpool; C:\Program Files\Common Files\Nitro PDF\Reader\1.0\NitroPDFReaderDriverServicex64.exe [341296 2010-12-03] (Nitro PDF Software)
R2 sprtsvc_verizondm; C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe [206120 2012-06-02] (SupportSoft, Inc.)
R2 tgsrvc_verizondm; C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe [185640 2012-06-02] (SupportSoft, Inc.)
R2 vToolbarUpdater18.1.9; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe [1820184 2014-08-11] (AVG Secure Search)
S2 SessionLauncher; c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [244504 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-08-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [269080 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-08-11] (AVG Technologies)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [37976 2013-05-07] (Windows ® Win 7 DDK provider) [File not signed]
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-11-04] (McAfee, Inc.)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-04-16] (COMODO)
R3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [304784 2010-03-23] ()
S3 FlyUsb; C:\Windows\System32\DRIVERS\FlyUsb.sys [24576 2013-10-31] (LeapFrog)
R1 HMD; C:\Windows\System32\DRIVERS\hmd.sys [14888 2013-10-07] ()
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-04-16] (COMODO)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179792 2013-11-04] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311120 2013-11-04] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519576 2013-11-04] (McAfee, Inc.)
R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782360 2013-11-04] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [100912 2012-02-22] (McAfee, Inc.)
R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343696 2013-11-04] (McAfee, Inc.)
S1 RxFilter; C:\Windows\SysWOW64\DRIVERS\RxFilter.sys [65520 2009-06-26] (Sonic Solutions)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-09 17:10 - 2014-11-09 17:12 - 00032728 _____ () C:\Users\Leron\Desktop\FRST.txt
2014-11-09 17:10 - 2014-11-09 17:11 - 00000000 ____D () C:\FRST
2014-11-09 17:09 - 2014-11-09 17:10 - 02116096 _____ (Farbar) C:\Users\Leron\Desktop\FRST64.exe
2014-11-09 17:00 - 2014-11-09 17:00 - 00635256 _____ () C:\Users\Leron\Desktop\ESETPoweliksCleaner.exe_20141109.170026.19296.log
2014-11-09 17:00 - 2014-11-09 17:00 - 00186568 _____ (ESET) C:\Users\Leron\Desktop\ESETPoweliksCleaner.exe
2014-11-09 17:00 - 2014-11-09 17:00 - 00002754 _____ () C:\Users\Leron\Desktop\ESETPoweliksCleaner.exe_20141109.170008.16596.log
2014-11-06 17:29 - 2014-11-06 17:29 - 00009559 _____ () C:\Users\Leron\Documents\Attach.txt
2014-11-06 17:20 - 2014-11-06 17:20 - 00688992 ____R (Swearware) C:\Users\Leron\Desktop\dds.com
2014-11-06 17:07 - 2014-11-06 17:07 - 00000000 ____D () C:\ComboFix
2014-11-06 17:05 - 2014-11-06 17:07 - 00000000 ___SD () C:\32788R22FWJFW
2014-11-06 16:44 - 2014-11-06 16:44 - 04184008 _____ (Kaspersky Lab ZAO) C:\Users\Leron\Desktop\tdsskiller.exe
2014-11-06 16:22 - 2014-11-06 16:22 - 00000331 _____ () C:\Start_.cmd
2014-11-06 16:20 - 2014-11-06 16:21 - 05591672 _____ (Swearware) C:\Users\Leron\Downloads\ComboFix(2).exe
2014-11-06 16:19 - 2014-11-06 16:19 - 00000000 ____D () C:\Qoobox
2014-11-06 16:16 - 2014-11-06 16:16 - 05591672 ____R (Swearware) C:\Users\Leron\Downloads\ComboFix(1).exe
2014-11-06 16:14 - 2014-11-06 16:14 - 00000000 ____D () C:\Windows\erdnt
2014-11-06 16:13 - 2014-11-06 16:30 - 05591672 ____R (Swearware) C:\Users\Leron\Desktop\ComboFix.exe
2014-11-04 04:57 - 2014-11-04 04:57 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-11-04 04:57 - 2014-11-04 04:57 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-11-04 04:57 - 2014-11-04 04:57 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-11-04 04:57 - 2014-11-04 04:57 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-11-04 04:57 - 2014-11-04 04:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-04 04:57 - 2014-11-04 04:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-04 04:57 - 2014-11-04 04:57 - 00000000 ____D () C:\Program Files (x86)\Java
2014-11-04 01:15 - 2014-11-04 01:15 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-04 01:15 - 2014-11-04 01:15 - 00001068 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-11-04 01:15 - 2014-11-04 01:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-11-04 01:15 - 2014-11-04 01:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-11-04 01:14 - 2014-11-04 01:15 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-04 01:14 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-04 01:14 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-01 20:36 - 2014-11-01 20:36 - 00001807 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-11-01 20:36 - 2014-11-01 20:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-11-01 20:36 - 2014-11-01 20:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-11-01 20:36 - 2014-11-01 20:36 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-11-01 20:33 - 2014-11-01 20:33 - 00001745 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-11-01 20:33 - 2014-11-01 20:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-11-01 20:33 - 2014-11-01 20:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-11-01 20:31 - 2014-11-01 20:33 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-11-01 20:31 - 2014-11-01 20:33 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-11-01 20:31 - 2014-11-01 20:33 - 00000000 ____D () C:\Program Files\iTunes
2014-11-01 20:31 - 2014-11-01 20:33 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-11-01 20:31 - 2014-11-01 20:31 - 00000000 ____D () C:\Program Files\iPod
2014-11-01 20:19 - 2014-11-01 20:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-11-01 20:19 - 2014-11-01 20:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-10-15 05:58 - 2014-09-28 19:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-15 05:57 - 2014-10-09 21:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-15 05:57 - 2014-10-09 21:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-15 05:57 - 2014-10-09 21:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-15 05:57 - 2014-10-06 21:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-15 05:57 - 2014-09-25 17:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-15 05:57 - 2014-09-18 20:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-15 05:57 - 2014-09-18 20:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-15 05:57 - 2014-09-18 20:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-15 05:57 - 2014-09-18 19:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-15 05:57 - 2014-09-18 19:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-15 05:57 - 2014-09-18 19:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-15 05:57 - 2014-08-18 22:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-10-15 05:57 - 2014-08-18 22:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-10-15 05:57 - 2014-08-18 22:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-10-15 05:57 - 2014-08-18 22:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-10-15 05:57 - 2014-08-18 22:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-10-15 05:57 - 2014-08-18 22:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-10-15 05:57 - 2014-08-18 22:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 05:57 - 2014-08-18 22:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2014-10-15 05:57 - 2014-08-18 22:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2014-10-15 05:57 - 2014-08-18 22:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 05:57 - 2014-08-18 21:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2014-10-15 05:57 - 2014-08-18 21:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-10-15 05:57 - 2014-08-18 21:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-10-15 05:57 - 2014-07-06 21:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-10-15 05:57 - 2014-07-06 21:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-10-15 05:57 - 2014-07-06 21:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-10-15 05:57 - 2014-07-06 21:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-10-15 05:57 - 2014-07-06 21:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-10-15 05:57 - 2014-07-06 21:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-10-15 05:57 - 2014-07-06 21:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-10-15 05:57 - 2014-07-06 21:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-10-15 05:57 - 2014-07-06 21:05 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-10-15 05:57 - 2014-07-06 21:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-10-15 05:57 - 2014-07-06 20:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-10-15 05:57 - 2014-07-06 20:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2014-10-15 05:57 - 2014-07-06 20:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2014-10-15 05:57 - 2014-07-06 20:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-10-15 05:57 - 2014-07-06 20:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-10-15 05:57 - 2014-07-06 20:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-10-15 05:57 - 2014-07-06 20:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-10-15 05:57 - 2014-07-06 20:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-10-15 05:57 - 2014-07-06 20:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-10-15 05:57 - 2014-06-27 19:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-10-15 05:57 - 2014-06-27 19:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-10-15 05:57 - 2014-06-27 19:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-15 05:56 - 2014-10-06 21:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-15 05:56 - 2014-09-25 17:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-15 05:56 - 2014-09-25 17:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-15 05:56 - 2014-09-25 17:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-15 05:56 - 2014-09-25 17:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-15 05:56 - 2014-09-25 17:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-15 05:56 - 2014-09-25 17:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-15 05:56 - 2014-09-18 21:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-15 05:56 - 2014-09-18 20:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 05:56 - 2014-09-18 20:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-15 05:56 - 2014-09-18 20:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-15 05:56 - 2014-09-18 20:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-15 05:56 - 2014-09-18 20:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-15 05:56 - 2014-09-18 20:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-15 05:56 - 2014-09-18 20:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-15 05:56 - 2014-09-18 20:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-15 05:56 - 2014-09-18 20:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-15 05:56 - 2014-09-18 20:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-15 05:56 - 2014-09-18 20:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-15 05:56 - 2014-09-18 20:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-15 05:56 - 2014-09-18 20:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-15 05:56 - 2014-09-18 20:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-15 05:56 - 2014-09-18 20:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 05:56 - 2014-09-18 20:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-15 05:56 - 2014-09-18 20:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-15 05:56 - 2014-09-18 20:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 05:56 - 2014-09-18 20:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-15 05:56 - 2014-09-18 20:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-15 05:56 - 2014-09-18 20:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-15 05:56 - 2014-09-18 20:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-15 05:56 - 2014-09-18 19:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-15 05:56 - 2014-09-18 19:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-15 05:56 - 2014-09-18 19:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-15 05:56 - 2014-09-18 19:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-15 05:56 - 2014-09-18 19:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-15 05:56 - 2014-09-18 19:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-15 05:56 - 2014-09-18 19:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-15 05:56 - 2014-09-18 19:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-15 05:56 - 2014-09-18 19:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-15 05:56 - 2014-09-18 19:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-15 05:56 - 2014-09-18 19:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-15 05:56 - 2014-09-18 19:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-15 05:56 - 2014-09-18 19:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-15 05:56 - 2014-09-18 19:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-15 05:56 - 2014-09-18 18:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-15 05:56 - 2014-09-18 18:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-15 05:56 - 2014-09-18 18:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-15 05:56 - 2014-09-18 18:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-15 05:56 - 2014-09-17 21:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-15 05:56 - 2014-09-17 20:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-15 05:56 - 2014-09-04 00:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-15 05:56 - 2014-09-04 00:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-15 05:56 - 2014-07-16 21:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-15 05:56 - 2014-07-16 21:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-15 05:56 - 2014-07-16 20:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-15 05:56 - 2014-07-16 20:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-15 05:56 - 2014-07-16 20:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-15 05:56 - 2014-07-16 20:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-15 05:56 - 2014-07-16 20:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-15 05:56 - 2014-07-16 20:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-15 05:56 - 2014-07-16 20:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-15 05:56 - 2014-07-16 20:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-15 05:55 - 2014-09-12 20:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-15 05:55 - 2014-09-12 20:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-09 17:10 - 2009-07-14 00:10 - 01880454 _____ () C:\Windows\WindowsUpdate.log
2014-11-09 17:08 - 2013-12-20 09:20 - 00000000 ____D () C:\ProgramData\MFAData
2014-11-09 17:08 - 2013-12-20 09:20 - 00000000 ____D () C:\ProgramData\MFAData
2014-11-09 17:04 - 2014-09-14 00:37 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-09 17:02 - 2013-12-20 09:40 - 00008780 _____ () C:\Windows\setupact.log
2014-11-09 17:02 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-09 16:55 - 2014-09-14 00:37 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-09 16:55 - 2014-06-11 02:16 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-06 17:35 - 2011-01-09 19:16 - 00000000 ____D () C:\Users\Leron\AppData\Roaming\Nitro PDF
2014-11-06 17:28 - 2007-12-18 20:39 - 00000000 ____D () C:\Users\Leron\Documents\ENGL 281 - Creative Writing
2014-11-06 16:57 - 2009-07-13 23:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-06 16:57 - 2009-07-13 23:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-06 14:09 - 2013-05-22 21:41 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-11-05 09:13 - 2014-05-08 01:52 - 00001079 _____ () C:\Users\Public\Desktop\Vz  In-Home Agent.lnk
2014-11-04 13:14 - 2009-07-14 00:13 - 00799414 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-04 13:09 - 2011-02-09 21:31 - 00000000 ___RD () C:\Users\Karen\Dropbox
2014-11-04 13:09 - 2011-02-09 21:29 - 00000000 ____D () C:\Users\Karen\AppData\Roaming\Dropbox
2014-11-04 05:01 - 2014-08-24 17:50 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-04 05:01 - 2014-08-24 17:50 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-04 04:49 - 2013-07-09 21:47 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-04 04:49 - 2013-07-09 21:47 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-04 04:42 - 2013-12-20 09:39 - 00179598 _____ () C:\Windows\PFRO.log
2014-11-04 04:40 - 2011-12-22 15:16 - 00007609 _____ () C:\Users\Leron\AppData\Local\Resmon.ResmonCfg
2014-11-04 01:15 - 2013-04-07 18:23 - 00000000 ____D () C:\Users\Leron\AppData\Roaming\Malwarebytes
2014-11-04 01:14 - 2013-04-07 18:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-04 01:14 - 2013-04-07 18:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-04 01:14 - 2013-04-07 18:23 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-11-01 20:31 - 2014-10-05 13:19 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-11-01 20:31 - 2014-10-05 13:19 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-11-01 20:31 - 2010-12-27 08:46 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-31 13:14 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-22 13:43 - 2014-09-14 00:37 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-22 13:43 - 2014-09-14 00:37 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-20 13:54 - 2014-01-17 16:40 - 00000000 ____D () C:\Program Files\CrashPlan
2014-10-19 14:57 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-10-19 12:04 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-10-19 11:55 - 2009-07-13 23:45 - 00365248 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-19 11:51 - 2014-05-06 01:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-19 11:51 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-10-19 11:51 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-10-15 12:13 - 2010-05-25 12:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-15 12:13 - 2010-05-25 12:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-15 12:08 - 2013-08-14 02:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-15 12:02 - 2010-12-27 08:07 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Karen\AppData\Local\Temp\8484_fdminst.exe
C:\Users\Karen\AppData\Local\Temp\air8483.exe
C:\Users\Karen\AppData\Local\Temp\airB036.exe
C:\Users\Karen\AppData\Local\Temp\aol-messaging_toolbarEEBE.exe
C:\Users\Karen\AppData\Local\Temp\COMAP.EXE
C:\Users\Karen\AppData\Local\Temp\contentDATs.exe
C:\Users\Karen\AppData\Local\Temp\DelayInst.exe
C:\Users\Karen\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpata01z.dll
C:\Users\Karen\AppData\Local\Temp\installservice.exe
C:\Users\Karen\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe
C:\Users\Karen\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\Karen\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\Karen\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\Karen\AppData\Local\Temp\SecurityScan_Release.exe
C:\Users\Karen\AppData\Local\Temp\vpnclient_setup.exe
C:\Users\Leron\AppData\Local\Temp\Impressioner.exe
C:\Users\Leron\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Leron\AppData\Local\Temp\System.Data.SQLite.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-11-05 00:26

==================== End Of Log ============================



#6 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:53 AM

Posted 09 November 2014 - 06:30 PM

Hi,

Step 1

Please uninstall some programs:
  • Windows 7w7.png: Click on the hidden2.png button, open Control Panel and click Uninstall a program.
  • Search and select the following programs one by one and click on Uninstall:
                                     Download Updater
  • Reboot your computer.
Step 2

emsisoft_emergency_kit.pnglogo.png
  • Download EEK and extract the contents to C:\
  • Double-click the desktop-shortcut to start the tool.
  • Click in the following update-screen "Yes" to obtain the latest malware definitions.
  • Once the update is complete click "Scan".
  • Enable "PUPs" detection (1) and click on "Full Scan" (2).
  • If adware/malware was detected, make sure to check all the items and click "Quarantine selected" (1) and afterwards "view report" (2).
  • Please paste the content of the report in your next reply.
EKK.gif

Step 3

Please download adwcleaner.png AdwCleaner (by Xplode) and save it to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select "Run As Administrator"
  • Click on the Scan button.
  • After the scan has finished, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • After rebooting, a log file (that is saved in C:\AdwCleaner[S#].txt) will open automatically.
    Copy and paste the contents of that logfile in your next reply.
Step 4

frst.pngfrstscan.png

Start FRST with administator privileges.
  • Make sure the following option is checked: addition.png
  • Press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
    Please copy and paste these logs in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#7 LThumim

LThumim
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 09 November 2014 - 06:57 PM

The EEK scan hung at 75% and would not complete.  I manually stopped it, quarantined everything it found up to that point, and ran the report, which came up with the below.  I'll now do the next step.

 

 

Emsisoft Emergency Kit - Version 9.0
Last update: 11/9/2014 6:37:07 PM
User account: LTsDesktop\Leron

Scan settings:

Scan type: Full Scan
Objects: Rootkits, Memory, Traces, C:\

Detect PUPs: On
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off

Scan start: 11/9/2014 6:50:49 PM
C:\ProgramData\anti-phishing domain advisor  detected: Application.AppInstall (A)
C:\ProgramData\blekko toolbars  detected: Application.AppInstall (A)
C:\Users\Leron\AppData\Local\blekkotb_soc  detected: Application.AppInstall (A)
C:\Users\Karen\AppData\Local\blekkotb_soc  detected: Application.AppInstall (A)
C:\Users\Leron\AppData\Local\opencandy  detected: Application.AppInstall (A)
C:\Program Files (x86)\blekkotb_soc  detected: Application.AppInstall (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\SCRIPTHELPER.SCRIPTHELPERAPI  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\SCRIPTHELPER.SCRIPTHELPERAPI.1  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\VIPROTOCOL.VIPROTOCOLOLE  detected: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\VIPROTOCOL.VIPROTOCOLOLE.1  detected: Application.AdReg (A)
Value: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN -> FREE DOWNLOAD MANAGER  detected: Application.AdStart (A)
Value: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN -> PC SPEED MAXIMIZER  detected: Application.AdStart (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{95B7759C-8C7F-4BF1-B163-73684A933233}  detected: Application.BHO (A)
Key: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1003\SOFTWARE\PC SPEED MAXIMIZER  detected: Application.InstallAd (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\SYSTWEAK  detected: Application.InstallAd (A)
Value: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS  detected: Setting.DisableRegistryTools (A)
Key: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\YAHOOPARTNERTOOLBAR  detected: Application.Win32.YTool (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\BINGBAR_RASMANCS  detected: Application.Win32.InstallExt (A)

Scanned 57965
Found 28

Scan end: 11/9/2014 6:53:48 PM
Scan time: 0:02:59

Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\BINGBAR_RASMANCS Quarantined Application.Win32.InstallExt (A)
Key: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\YAHOOPARTNERTOOLBAR Quarantined Application.Win32.YTool (A)
Value: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS Quarantined Setting.DisableRegistryTools (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\SYSTWEAK Quarantined Application.InstallAd (A)
Key: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1003\SOFTWARE\PC SPEED MAXIMIZER Quarantined Application.InstallAd (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{95B7759C-8C7F-4BF1-B163-73684A933233} Quarantined Application.BHO (A)
Value: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN -> PC SPEED MAXIMIZER Quarantined Application.AdStart (A)
Value: HKEY_USERS\S-1-5-21-3521837321-3699816946-3115604090-1003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN -> FREE DOWNLOAD MANAGER Quarantined Application.AdStart (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\VIPROTOCOL.VIPROTOCOLOLE.1 Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\VIPROTOCOL.VIPROTOCOLOLE Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\SCRIPTHELPER.SCRIPTHELPERAPI.1 Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\SCRIPTHELPER.SCRIPTHELPERAPI Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} Quarantined Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Quarantined Application.AdReg (A)
C:\Program Files (x86)\blekkotb_soc Quarantined Application.AppInstall (A)
C:\Users\Leron\AppData\Local\opencandy Quarantined Application.AppInstall (A)
C:\Users\Karen\AppData\Local\blekkotb_soc Quarantined Application.AppInstall (A)
C:\Users\Leron\AppData\Local\blekkotb_soc Quarantined Application.AppInstall (A)
C:\ProgramData\blekko toolbars Quarantined Application.AppInstall (A)
C:\ProgramData\anti-phishing domain advisor Quarantined Application.AppInstall (A)

Quarantined 28



#8 LThumim

LThumim
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 09 November 2014 - 07:39 PM

ADware found something during its scan, but after it reboot, I wasn't able to find that report.  I scanned a second time and got this report:

 

# AdwCleaner v4.101 - Report created 09/11/2014 at 19:36:03
# Updated 09/11/2014 by Xplode
# Database : 2014-11-07.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Leron - LTSDESKTOP
# Running from : C:\Users\Leron\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344

-\\ Mozilla Firefox v32.0.3 (x86 en-US)

-\\ Comodo Dragon v33.1.0.0

*************************

AdwCleaner[R0].txt - [11152 octets] - [09/11/2014 18:59:04]
AdwCleaner[R1].txt - [978 octets] - [09/11/2014 19:36:03]
AdwCleaner[S0].txt - [11526 octets] - [09/11/2014 19:18:41]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1098 octets] ##########



#9 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:53 AM

Posted 10 November 2014 - 07:04 AM

OK. Please go ahead with step 4... :)
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#10 LThumim

LThumim
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 11 November 2014 - 03:05 AM

Oh, sorry, here's the FRST.txt:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-11-2014 01
Ran by Leron (administrator) on LTSDESKTOP on 11-11-2014 01:57:01
Running from C:\Users\Leron\Desktop
Loaded Profile: Leron (Available profiles: Leron & Karen & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CrashPlan) C:\Program Files\CrashPlan\CrashPlanService.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
() C:\Program Files\MCEBuddy\MCEBuddy.Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Reader\1.0\NitroPDFReaderDriverServicex64.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
(Code 42 Software, Inc.) C:\Program Files\CrashPlan\CrashPlanTray.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\sprtcmd.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Verizon) C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
(Verizon) C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\IHAMCNotify.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Verizon) C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\VzDetectAgent.exe
(Verizon) C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\VzDetectAgent.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RunDLLEntry_THXCfg] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8158240 2009-10-06] (Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1275608 2014-03-25] (COMODO)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe [963584 2009-12-01] (Creative Technology Ltd)
HKLM-x32\...\Run: [PDVDDXSrv] => C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520 2009-12-29] (CyberLink Corp.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2009-10-02] (Intel Corporation)
HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe [1807600 2009-11-13] ()
HKLM-x32\...\Run: [AppleSyncNotifier] => C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2012-02-23] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [QuickFinder Scheduler] => c:\Program Files (x86)\Corel\WordPerfect Office X4\Programs\QFSCHD140.EXE [83232 2008-03-21] (Corel Corporation)
HKLM-x32\...\Run: [VERIZONDM] => C:\Program Files (x86)\VERIZONDM\bin\sprtcmd.exe [206120 2012-06-02] (SupportSoft, Inc.)
HKLM-x32\...\Run: [Monitor] => C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe [106496 2014-01-22] (LeapFrog Enterprises, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395656 2013-09-16] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153992 2013-09-16] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5188112 2014-08-25] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [tvncontrol] => C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-12-13] (Comodo Security Solutions, Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [79136 2008-10-24] (Macrovision Corporation)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [196608 2004-04-17] (InstallShield Software Corporation)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-08-07] (Apple Inc.)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [com.apple.dav.bookmarks.daemon] => C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1080104 2014-08-04] (Apple Inc.)
HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\MountPoints2: {5ba49ef6-50b0-11e0-a61a-b8ac6f9df27e} - I:\LaunchU3.exe -a
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CrashPlan Tray.lnk
ShortcutTarget: CrashPlan Tray.lnk -> C:\Program Files\CrashPlan\CrashPlanTray.exe (Code 42 Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk
ShortcutTarget: vpngui.exe.lnk -> C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CrashPlan Tray.lnk
ShortcutTarget: CrashPlan Tray.lnk -> C:\Program Files\CrashPlan\CrashPlanTray.exe (Code 42 Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk
ShortcutTarget: vpngui.exe.lnk -> C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe ()
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Karen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Karen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Leron\AppData\Roaming\Dropbox\bin\Dropbox.exe (No File)
Startup: C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\TEMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
BootExecute: autocheck autochk *  /sync /restart /sync /restart /sync /restart /sync /restart /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKLM - DefaultScope {0B4A10D1-FBD6-451d-BFDA-F03252B05984} URL =
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {7F9DA150-C307-4B0A-9B32-A2FA6407A252} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll No File
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
DPF: HKLM-x32 {A6AD2813-EDAC-4CAA-B7A3-431EC0758C2D} https://relativity.ldiscovery.com/Relativity/ActiveX/webclientmanager.cab
DPF: HKLM-x32 {B805D226-4CA5-499C-A8CA-3E61CF947A5D} https://review6.quinnltas.com/Public/cab/c8be74aa-e404-434e-8151-d1c702987d6f.cab
DPF: HKLM-x32 {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
ShellExecuteHooks-x32: Eudora's Shell Extension - {EDB0E980-90BD-11D4-8599-0008C7D3B6F8} - C:\My Entire Old Drive\Internet\Bear Access\winba\eudora\EuShlExt.dll [86016 2002-10-18] (Qualcomm Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default
FF Homepage: hxxp://www.aol.com/?mtmhp=hyplogusaolp00000013
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=mcafee&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\searchplugins\aim-search.xml
FF SearchPlugin: C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\searchplugins\aol-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-09-26]
FF Extension: DownloadHelper - C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-09-21]
FF Extension: AOL Messaging Toolbar - C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\Extensions\{c2f863cd-0429-48c7-bb54-db756a951760} [2013-09-30]
FF Extension: PDF Download - C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\Extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}.xpi [2011-06-15]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\17.3.0.49\avg.crx []

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3242000 2014-08-25] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-25] (AVG Technologies CZ, s.r.o.)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70352 2013-12-13] (Comodo Security Solutions, Inc.)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 CrashPlanService; C:\Program Files\CrashPlan\CrashPlanService.exe [222720 2013-04-08] (CrashPlan) [File not signed]
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2009-06-09] (Stardock Corporation) [File not signed]
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-05-21] ()
R2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-12-13] (Comodo Security Solutions, Inc.)
R2 IHA_MessageCenter; C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [363128 2014-08-13] (Verizon)
R2 LeapFrog Connect Device Service; C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe [7393280 2014-01-22] (LeapFrog Enterprises, Inc.) [File not signed]
R2 MCEBuddy; C:\Program Files\MCEBuddy\MCEBuddy.Service.exe [16896 2012-02-20] () [File not signed]
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [199304 2012-05-25] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-04] (McAfee, Inc.)
R2 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [182752 2013-11-04] (McAfee, Inc.)
R2 NitroReaderDriverReadSpool; C:\Program Files\Common Files\Nitro PDF\Reader\1.0\NitroPDFReaderDriverServicex64.exe [341296 2010-12-03] (Nitro PDF Software)
R2 sprtsvc_verizondm; C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe [206120 2012-06-02] (SupportSoft, Inc.)
R2 tgsrvc_verizondm; C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe [185640 2012-06-02] (SupportSoft, Inc.)
S2 SessionLauncher; c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [244504 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-08-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [269080 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-08-11] (AVG Technologies)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [37976 2013-05-07] (Windows ® Win 7 DDK provider) [File not signed]
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-11-04] (McAfee, Inc.)
S3 cleanhlp; C:\EEK\bin\cleanhlp64.sys [57024 2014-11-09] (Emsisoft GmbH)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-04-16] (COMODO)
R3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [304784 2010-03-23] ()
S3 FlyUsb; C:\Windows\System32\DRIVERS\FlyUsb.sys [24576 2013-10-31] (LeapFrog)
R1 HMD; C:\Windows\System32\DRIVERS\hmd.sys [14888 2013-10-07] ()
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-04-16] (COMODO)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179792 2013-11-04] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311120 2013-11-04] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519576 2013-11-04] (McAfee, Inc.)
R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782360 2013-11-04] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [100912 2012-02-22] (McAfee, Inc.)
R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343696 2013-11-04] (McAfee, Inc.)
S1 RxFilter; C:\Windows\SysWOW64\DRIVERS\RxFilter.sys [65520 2009-06-26] (Sonic Solutions)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-09 18:59 - 2014-11-09 19:38 - 00000000 ____D () C:\AdwCleaner
2014-11-09 18:57 - 2014-11-09 18:58 - 02140160 _____ () C:\Users\Leron\Desktop\AdwCleaner.exe
2014-11-09 18:35 - 2014-11-09 18:35 - 00000745 _____ () C:\Users\Leron\Desktop\Start Emsisoft Emergency Kit.lnk
2014-11-09 18:34 - 2014-11-09 18:50 - 00000000 ____D () C:\EEK
2014-11-09 18:34 - 2014-11-09 18:34 - 155980096 _____ () C:\Users\Leron\EmsisoftEmergencyKit.exe
2014-11-09 17:14 - 2014-11-09 17:15 - 00038810 _____ () C:\Users\Leron\Desktop\Addition.txt
2014-11-09 17:10 - 2014-11-11 01:58 - 00030083 _____ () C:\Users\Leron\Desktop\FRST.txt
2014-11-09 17:10 - 2014-11-11 01:57 - 00000000 ____D () C:\FRST
2014-11-09 17:09 - 2014-11-09 17:10 - 02116096 _____ (Farbar) C:\Users\Leron\Desktop\FRST64.exe
2014-11-09 17:00 - 2014-11-09 17:00 - 00635256 _____ () C:\Users\Leron\Desktop\ESETPoweliksCleaner.exe_20141109.170026.19296.log
2014-11-09 17:00 - 2014-11-09 17:00 - 00186568 _____ (ESET) C:\Users\Leron\Desktop\ESETPoweliksCleaner.exe
2014-11-09 17:00 - 2014-11-09 17:00 - 00002754 _____ () C:\Users\Leron\Desktop\ESETPoweliksCleaner.exe_20141109.170008.16596.log
2014-11-06 17:29 - 2014-11-06 17:29 - 00009559 _____ () C:\Users\Leron\Documents\Attach.txt
2014-11-06 17:20 - 2014-11-06 17:20 - 00688992 ____R (Swearware) C:\Users\Leron\Desktop\dds.com
2014-11-06 17:07 - 2014-11-06 17:07 - 00000000 ____D () C:\ComboFix
2014-11-06 17:05 - 2014-11-06 17:07 - 00000000 ___SD () C:\32788R22FWJFW
2014-11-06 16:44 - 2014-11-06 16:44 - 04184008 _____ (Kaspersky Lab ZAO) C:\Users\Leron\Desktop\tdsskiller.exe
2014-11-06 16:22 - 2014-11-06 16:22 - 00000331 _____ () C:\Start_.cmd
2014-11-06 16:20 - 2014-11-06 16:21 - 05591672 _____ (Swearware) C:\Users\Leron\Downloads\ComboFix(2).exe
2014-11-06 16:19 - 2014-11-06 16:19 - 00000000 ____D () C:\Qoobox
2014-11-06 16:16 - 2014-11-06 16:16 - 05591672 ____R (Swearware) C:\Users\Leron\Downloads\ComboFix(1).exe
2014-11-06 16:14 - 2014-11-06 16:14 - 00000000 ____D () C:\Windows\erdnt
2014-11-06 16:13 - 2014-11-06 16:30 - 05591672 ____R (Swearware) C:\Users\Leron\Desktop\ComboFix.exe
2014-11-04 04:57 - 2014-11-04 04:57 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-11-04 04:57 - 2014-11-04 04:57 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-11-04 04:57 - 2014-11-04 04:57 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-11-04 04:57 - 2014-11-04 04:57 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-11-04 04:57 - 2014-11-04 04:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-04 04:57 - 2014-11-04 04:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-04 04:57 - 2014-11-04 04:57 - 00000000 ____D () C:\Program Files (x86)\Java
2014-11-04 01:15 - 2014-11-04 01:15 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-04 01:15 - 2014-11-04 01:15 - 00001068 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-11-04 01:15 - 2014-11-04 01:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-11-04 01:15 - 2014-11-04 01:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-11-04 01:14 - 2014-11-04 01:15 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-04 01:14 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-04 01:14 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-01 20:36 - 2014-11-01 20:36 - 00001807 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-11-01 20:36 - 2014-11-01 20:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-11-01 20:36 - 2014-11-01 20:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-11-01 20:36 - 2014-11-01 20:36 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-11-01 20:33 - 2014-11-01 20:33 - 00001745 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-11-01 20:33 - 2014-11-01 20:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-11-01 20:33 - 2014-11-01 20:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-11-01 20:31 - 2014-11-01 20:33 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-11-01 20:31 - 2014-11-01 20:33 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-11-01 20:31 - 2014-11-01 20:33 - 00000000 ____D () C:\Program Files\iTunes
2014-11-01 20:31 - 2014-11-01 20:33 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-11-01 20:31 - 2014-11-01 20:31 - 00000000 ____D () C:\Program Files\iPod
2014-11-01 20:19 - 2014-11-01 20:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-11-01 20:19 - 2014-11-01 20:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-10-15 05:58 - 2014-09-28 19:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-15 05:57 - 2014-10-09 21:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-15 05:57 - 2014-10-09 21:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-15 05:57 - 2014-10-09 21:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-15 05:57 - 2014-10-06 21:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-15 05:57 - 2014-09-25 17:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-15 05:57 - 2014-09-18 20:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-15 05:57 - 2014-09-18 20:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-15 05:57 - 2014-09-18 20:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-15 05:57 - 2014-09-18 19:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-15 05:57 - 2014-09-18 19:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-15 05:57 - 2014-09-18 19:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-15 05:57 - 2014-08-18 22:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-10-15 05:57 - 2014-08-18 22:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-10-15 05:57 - 2014-08-18 22:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-10-15 05:57 - 2014-08-18 22:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-10-15 05:57 - 2014-08-18 22:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-10-15 05:57 - 2014-08-18 22:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-10-15 05:57 - 2014-08-18 22:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 05:57 - 2014-08-18 22:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2014-10-15 05:57 - 2014-08-18 22:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2014-10-15 05:57 - 2014-08-18 22:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 05:57 - 2014-08-18 21:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2014-10-15 05:57 - 2014-08-18 21:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-10-15 05:57 - 2014-08-18 21:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-10-15 05:57 - 2014-07-06 21:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-10-15 05:57 - 2014-07-06 21:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-10-15 05:57 - 2014-07-06 21:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-10-15 05:57 - 2014-07-06 21:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-10-15 05:57 - 2014-07-06 21:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-10-15 05:57 - 2014-07-06 21:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-10-15 05:57 - 2014-07-06 21:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-10-15 05:57 - 2014-07-06 21:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-10-15 05:57 - 2014-07-06 21:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-10-15 05:57 - 2014-07-06 21:05 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-10-15 05:57 - 2014-07-06 21:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-10-15 05:57 - 2014-07-06 20:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-10-15 05:57 - 2014-07-06 20:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2014-10-15 05:57 - 2014-07-06 20:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2014-10-15 05:57 - 2014-07-06 20:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2014-10-15 05:57 - 2014-07-06 20:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-10-15 05:57 - 2014-07-06 20:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-10-15 05:57 - 2014-07-06 20:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-10-15 05:57 - 2014-07-06 20:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-10-15 05:57 - 2014-07-06 20:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-10-15 05:57 - 2014-07-06 20:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-10-15 05:57 - 2014-06-27 19:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-10-15 05:57 - 2014-06-27 19:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-10-15 05:57 - 2014-06-27 19:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-15 05:57 - 2014-06-18 17:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-15 05:56 - 2014-10-06 21:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-15 05:56 - 2014-09-25 17:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-15 05:56 - 2014-09-25 17:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-15 05:56 - 2014-09-25 17:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-15 05:56 - 2014-09-25 17:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-15 05:56 - 2014-09-25 17:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-15 05:56 - 2014-09-25 17:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-15 05:56 - 2014-09-18 21:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-15 05:56 - 2014-09-18 20:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 05:56 - 2014-09-18 20:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-15 05:56 - 2014-09-18 20:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-15 05:56 - 2014-09-18 20:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-15 05:56 - 2014-09-18 20:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-15 05:56 - 2014-09-18 20:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-15 05:56 - 2014-09-18 20:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-15 05:56 - 2014-09-18 20:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-15 05:56 - 2014-09-18 20:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-15 05:56 - 2014-09-18 20:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-15 05:56 - 2014-09-18 20:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-15 05:56 - 2014-09-18 20:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-15 05:56 - 2014-09-18 20:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-15 05:56 - 2014-09-18 20:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-15 05:56 - 2014-09-18 20:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 05:56 - 2014-09-18 20:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-15 05:56 - 2014-09-18 20:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-15 05:56 - 2014-09-18 20:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 05:56 - 2014-09-18 20:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-15 05:56 - 2014-09-18 20:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-15 05:56 - 2014-09-18 20:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-15 05:56 - 2014-09-18 20:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-15 05:56 - 2014-09-18 19:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-15 05:56 - 2014-09-18 19:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-15 05:56 - 2014-09-18 19:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-15 05:56 - 2014-09-18 19:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-15 05:56 - 2014-09-18 19:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-15 05:56 - 2014-09-18 19:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-15 05:56 - 2014-09-18 19:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-15 05:56 - 2014-09-18 19:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-15 05:56 - 2014-09-18 19:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-15 05:56 - 2014-09-18 19:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-15 05:56 - 2014-09-18 19:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-15 05:56 - 2014-09-18 19:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-15 05:56 - 2014-09-18 19:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-15 05:56 - 2014-09-18 19:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-15 05:56 - 2014-09-18 18:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-15 05:56 - 2014-09-18 18:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-15 05:56 - 2014-09-18 18:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-15 05:56 - 2014-09-18 18:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-15 05:56 - 2014-09-17 21:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-15 05:56 - 2014-09-17 20:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-15 05:56 - 2014-09-04 00:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-15 05:56 - 2014-09-04 00:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-15 05:56 - 2014-07-16 21:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-15 05:56 - 2014-07-16 21:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-15 05:56 - 2014-07-16 21:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-15 05:56 - 2014-07-16 20:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-15 05:56 - 2014-07-16 20:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-15 05:56 - 2014-07-16 20:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-15 05:56 - 2014-07-16 20:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-15 05:56 - 2014-07-16 20:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-15 05:56 - 2014-07-16 20:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-15 05:56 - 2014-07-16 20:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-15 05:56 - 2014-07-16 20:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-15 05:55 - 2014-09-12 20:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-15 05:55 - 2014-09-12 20:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-11 01:48 - 2014-09-14 00:37 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-11 01:23 - 2014-06-11 02:16 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-11 01:21 - 2009-07-14 00:10 - 01962531 _____ () C:\Windows\WindowsUpdate.log
2014-11-10 21:08 - 2011-01-09 19:16 - 00000000 ____D () C:\Users\Leron\AppData\Roaming\Nitro PDF
2014-11-10 18:19 - 2013-12-20 09:20 - 00000000 ____D () C:\ProgramData\MFAData
2014-11-10 18:19 - 2013-12-20 09:20 - 00000000 ____D () C:\ProgramData\MFAData
2014-11-10 14:48 - 2014-09-14 00:37 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-10 14:02 - 2013-05-22 21:41 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-11-09 19:34 - 2009-07-13 23:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-09 19:34 - 2009-07-13 23:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-09 19:26 - 2013-12-20 09:40 - 00008892 _____ () C:\Windows\setupact.log
2014-11-09 19:26 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-09 19:21 - 2013-12-20 09:39 - 00179912 _____ () C:\Windows\PFRO.log
2014-11-09 18:34 - 2010-12-26 16:02 - 00000000 ____D () C:\Users\Leron
2014-11-06 17:28 - 2007-12-18 20:39 - 00000000 ____D () C:\Users\Leron\Documents\ENGL 281 - Creative Writing
2014-11-05 09:13 - 2014-05-08 01:52 - 00001079 _____ () C:\Users\Public\Desktop\Vz  In-Home Agent.lnk
2014-11-04 13:14 - 2009-07-14 00:13 - 00799414 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-04 13:09 - 2011-02-09 21:31 - 00000000 ___RD () C:\Users\Karen\Dropbox
2014-11-04 13:09 - 2011-02-09 21:29 - 00000000 ____D () C:\Users\Karen\AppData\Roaming\Dropbox
2014-11-04 05:01 - 2014-08-24 17:50 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-04 05:01 - 2014-08-24 17:50 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-04 04:49 - 2013-07-09 21:47 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-04 04:49 - 2013-07-09 21:47 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-04 04:40 - 2011-12-22 15:16 - 00007609 _____ () C:\Users\Leron\AppData\Local\Resmon.ResmonCfg
2014-11-04 01:15 - 2013-04-07 18:23 - 00000000 ____D () C:\Users\Leron\AppData\Roaming\Malwarebytes
2014-11-04 01:14 - 2013-04-07 18:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-04 01:14 - 2013-04-07 18:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-04 01:14 - 2013-04-07 18:23 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-11-01 20:31 - 2014-10-05 13:19 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-11-01 20:31 - 2014-10-05 13:19 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-11-01 20:31 - 2010-12-27 08:46 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-31 13:14 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-22 13:43 - 2014-09-14 00:37 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-22 13:43 - 2014-09-14 00:37 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-20 13:54 - 2014-01-17 16:40 - 00000000 ____D () C:\Program Files\CrashPlan
2014-10-19 14:57 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-10-19 12:04 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-10-19 11:55 - 2009-07-13 23:45 - 00365248 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-19 11:51 - 2014-05-06 01:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-19 11:51 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-10-19 11:51 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-10-15 12:13 - 2010-05-25 12:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-15 12:13 - 2010-05-25 12:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-15 12:08 - 2013-08-14 02:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-15 12:02 - 2010-12-27 08:07 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Files to move or delete:
====================
C:\Users\Leron\EmsisoftEmergencyKit.exe

Some content of TEMP:
====================
C:\Users\Karen\AppData\Local\Temp\8484_fdminst.exe
C:\Users\Karen\AppData\Local\Temp\air8483.exe
C:\Users\Karen\AppData\Local\Temp\airB036.exe
C:\Users\Karen\AppData\Local\Temp\aol-messaging_toolbarEEBE.exe
C:\Users\Karen\AppData\Local\Temp\COMAP.EXE
C:\Users\Karen\AppData\Local\Temp\contentDATs.exe
C:\Users\Karen\AppData\Local\Temp\DelayInst.exe
C:\Users\Karen\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpata01z.dll
C:\Users\Karen\AppData\Local\Temp\installservice.exe
C:\Users\Karen\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe
C:\Users\Karen\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\Karen\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\Karen\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\Karen\AppData\Local\Temp\SecurityScan_Release.exe
C:\Users\Karen\AppData\Local\Temp\vpnclient_setup.exe
C:\Users\Leron\AppData\Local\Temp\Impressioner.exe
C:\Users\Leron\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Leron\AppData\Local\Temp\Quarantine.exe
C:\Users\Leron\AppData\Local\Temp\sqlite3.dll
C:\Users\Leron\AppData\Local\Temp\System.Data.SQLite.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-11-05 00:26

==================== End Of Log ============================


And here's the Addition.txt:

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-11-2014 01
Ran by Leron at 2014-11-11 01:58:32
Running from C:\Users\Leron\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: COMODO Antivirus (Enabled - Up to date) {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
AS: COMODO Antivirus (Enabled - Up to date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
AIM 7 (HKLM-x32\...\AIM_7) (Version:  - )
AMD Catalyst Install Manager (HKLM\...\{353D1262-B2D2-AD87-EB5E-6B1395AF9FAE}) (Version: 3.0.868.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Control Center (HKLM-x32\...\{055EE59D-217B-43A7-ABFF-507B966405D8}) (Version: 2.009.1211.1546 - )
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4765 - AVG Technologies)
AVG 2014 (Version: 14.0.4189 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4765 - AVG Technologies) Hidden
Banctec Service Agreement (HKLM-x32\...\{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}) (Version: 2.0.0 - Dell Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
ccc-core-static (x32 Version: 2009.1211.1547.28237 - ATI) Hidden
Cisco Systems VPN Client 5.0.07.0290 (HKLM\...\{467D5E81-8349-4892-9E81-C3674ED8E451}) (Version: 5.0.7 - Cisco Systems, Inc.)
Citrix QE Custom Settings (HKLM-x32\...\{907BCBF7-FB1A-4E74-8AB6-3F092A57F719}) (Version: 1.1 - Quinn Emanuel)
Citrix QE Trusted Sites (HKLM-x32\...\{45555A09-9209-4A44-81E9-437A17970F36}) (Version: 1.0.1 - QE LLP)
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.0.1.4 - Citrix Systems, Inc.)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.0 - COMODO)
COMODO Internet Security Premium (HKLM\...\{901D1D88-408D-48E5-80DD-CC3145BD8456}) (Version: 6.3.39949.2976 - COMODO Security Solutions Inc.)
CrashPlan (HKLM\...\{FCE35118-DD2F-4DB8-A5B6-D857F95669E0}) (Version: 3.5.3 - CrashPlan)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 2.41 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.48 - Dell)
Dell DataSafe Online (HKLM-x32\...\{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}) (Version: 1.2.0009 - Dell, Inc.)
Dell Dock (HKLM-x32\...\Dell Dock) (Version:  - Stardock Corporation)
Dell Dock (Version: 2.0 - Stardock Corporation) Hidden
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DirectXInstallService (x32 Version: 9.0.2 - Roxio) Hidden
EMC 10 Content (x32 Version: 1.0.035 - Roxo, Inc.) Hidden
EMCGadgets64 (Version: 1.0.302 - Sonic) Hidden
FileZilla Client 3.7.3 (HKLM-x32\...\FileZilla Client) (Version: 3.7.3 - Tim Kosse)
Free Download Manager 3.8 (HKLM-x32\...\Free Download Manager_is1) (Version:  - FreeDownloadManager.ORG)
GeekBuddy (HKLM\...\{EC4E385C-4B7D-4FDD-9F0C-C91B116AD243}) (Version: 4.10.79 - Comodo Security Solutions Inc)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
iCloud (HKLM\...\{6096C0CC-7E19-4355-87F0-627EC5AA146D}) (Version: 4.0.3.56 - Apple Inc.)
IHA_MessageCenter (HKLM-x32\...\{329445EA-EBA3-45A0-A7A7-B6A6555DB881}) (Version: 1.8.53 - Verizon)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.0.1006 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.0.1037 - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LeapFrog Connect (HKLM-x32\...\UPCShell) (Version: 5.3.0.18537 - LeapFrog)
LeapFrog Connect (x32 Version: 5.3.0.18537 - LeapFrog) Hidden
LeapFrog My Pals Plugin (x32 Version: 5.1.26.18340 - LeapFrog) Hidden
LeapFrog Tag Junior Plugin (x32 Version: 5.1.26.18340 - LeapFrog) Hidden
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
MCEBuddy 2.1 (HKLM\...\{0D3796AA-D867-4278-AEBC-3616AD1F7C3A}) (Version: 2.1.2 - MCEBuddy)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MobileMe Control Panel (HKLM\...\{AF5020D9-116A-46AC-A922-087592F37EC9}) (Version: 3.1.8.0 - Apple Inc.)
Mozilla Firefox 32.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mumble and Murmur (HKLM-x32\...\Mumble) (Version: 1.2.2 - Mumble)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
myfantasyleague.com Game Day 2014 (HKLM-x32\...\mflGameDay_is1) (Version: 1.0 - Sideline Software, Inc.)
Nitro PDF Reader (HKLM\...\{0CB41726-DEBA-46E1-B48B-873F012ACAA1}) (Version: 1.3.2.1 - Nitro PDF Software)
Online Plug-in (x32 Version: 14.0.1.4 - Citrix Systems, Inc.) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PowerDVD DX (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 8.3.6029 - CyberLink Corp.)
PrimoPDF -- brought to you by Nitro PDF Software (HKLM-x32\...\PrimoPDF) (Version: 5 - Nitro PDF Software)
Quest for Glory II (HKU\S-1-5-21-3521837321-3699816946-3115604090-1001\...\Quest for Glory II) (Version:  - )
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5953 - Realtek Semiconductor Corp.)
Relativity Web Client 7.5 (HKLM-x32\...\{DE134208-FE69-47A6-A928-EE42A32E0B7F}) (Version: 7.5.63028 - kCura Corporation)
Relativity Web Client 8.1 (HKLM-x32\...\{BB2996F9-C522-470D-B9D4-CC8E14867887}) (Version: 8.1.26401 - kCura Corporation)
Relativity Web Client Manager 7.5 (HKLM-x32\...\{7C465A40-87B2-4857-BC9D-3B9104F97A6F}) (Version: 7.5.63028 - kCura Corporation)
Relativity Web Client Manager 8.1 (HKLM-x32\...\{76AADA5D-A267-48A0-9B4E-499DA409535C}) (Version: 8.1.26401 - kCura Corporation)
Roxio Easy CD and DVD Burning (HKLM-x32\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio)
Roxio File Backup (Version: 1.3.0 - Roxio) Hidden
Safari (HKLM-x32\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
Shutterfly Express Uploader (HKLM-x32\...\com.Shutterfly.ExpressUploader) (Version: 1.2.0.0 - Shutterfly, Inc.)
Shutterfly Express Uploader (x32 Version: 1.2.0 - Shutterfly, Inc.) Hidden
Skins (x32 Version: 2009.1211.1547.28237 - ATI) Hidden
Skype Toolbars (HKLM-x32\...\{981029E0-7FC9-4CF3-AB39-6F133621921A}) (Version: 1.0.4051 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Starflight 1 and 2 (HKLM-x32\...\GOGPACKSTARFLIGHT1AND2_is1) (Version: 2.0.0.19 - GOG.com)
THX TruStudio PC (HKLM-x32\...\{010A785B-F920-4350-821B-6309909C20BB}) (Version: 1.0 - Creative Technology Limited)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Use the entry named LeapFrog Connect to uninstall (LeapFrog My Pals Plugin) (HKLM-x32\...\MyPalsPlugin) (Version:  - LeapFrog)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Junior Plugin) (HKLM-x32\...\TagJuniorPlugin) (Version:  - LeapFrog)
VD64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Ventrilo Client (HKLM-x32\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.7 - Flagship Industries, Inc.)
Verizon Download Manager (HKLM-x32\...\{A0760C09-B1F8-4620-9668-F361098981E6}) (Version: 25 - SupportSoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vz In-Home Agent (HKLM-x32\...\VzInHomeAgent) (Version: 9.0.65.0 - Verizon)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.1 - WebM Project)
Windows Driver Package - LeapFrog (FlyUsb) USB  (11/05/2008 1.1.1.0) (HKLM\...\781745E87AFF80C0C1388CFF79D19ECAB2E9BB47) (Version: 11/05/2008 1.1.1.0 - LeapFrog)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (HKLM\...\8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D) (Version: 09/10/2009 02.03.05.012 - Leapfrog)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Wing Commander Saga 1.0.2.7795 (HKLM\...\{F6FD24B4-34A3-4635-8ECD-7B5C791EAE5F}) (Version: 1.0.2.7795 - Wing Commander Saga Team)
WordPerfect Office X4 - Common (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Content (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - EN (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Filters (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Graphics (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - ICA (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - IPM (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - IPM EN (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Migration Manager (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - PerfectExperts (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - PR (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - QP (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - Skins (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - System (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 - WP (x32 Version: 14.0 - Corel Corporation) Hidden
WordPerfect Office X4 (HKLM-x32\...\_{DCDAB2ED-5741-4C30-A1A4-0FCB8A529001}) (Version:  - Corel Corporation)
WordPerfect Office X4 (x32 Version: 14.0 - Corel Corporation) Hidden
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: 5.4.0.17399 - Blizzard Entertainment)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3521837321-3699816946-3115604090-1001_Classes\CLSID\{6a431500-8ea3-4129-b0fa-7ab508c65975}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)

==================== Restore Points  =========================

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2011-09-08 18:34 - 00437405 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 1000 more lines.

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {239DBD94-9337-42EE-B94D-A9F2C2FFF9FA} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {2A39ECEC-AB6A-42A2-8FD6-9418B040337D} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {2F2A7ECE-2053-4AB8-A7F7-EB1B9613D63C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {4AA8C7AE-604A-487F-B68E-EDF9C514131D} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {4E84B648-1DAF-4342-8CA3-98CE3B37A939} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-14] (Google Inc.)
Task: {64FE14F8-4678-475B-9DFF-F72C3C873ECC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-23] (Adobe Systems Incorporated)
Task: {8111AC89-01E5-4B0D-9B3C-668E7EDBAA1C} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {9C5449A6-49AD-43FF-91FF-317414EEE2D8} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {B1D62DB4-9773-4630-92C3-2DB4DA7B8C0B} - System32\Tasks\{DDB4295B-8822-46CA-ABF3-F4A2BEB644A7} => Iexplore.exe http://www.skype.com/go/downloading?source=lightinstaller&amp;ver=5.1.0.112.259&amp;LastError=-3
Task: {BE994830-F0A3-4120-920E-126E8C8F7A0A} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {C479E68C-4774-420B-B751-AD36BE8AC356} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe [2013-01-17] ()
Task: {EB1B2F5A-873B-424E-AC5A-532C591E798A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-14] (Google Inc.)
Task: {EC45FD86-238A-46F6-8CC3-DFA827E596F4} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-31] (PC-Doctor, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe

==================== Loaded Modules (whitelisted) =============

2011-01-09 19:15 - 2009-12-20 20:42 - 00090624 _____ () C:\Windows\System32\Primomonnt.dll
2013-04-08 18:35 - 2013-04-08 18:35 - 00014848 _____ () C:\Program Files\CrashPlan\md564.dll
2014-10-20 13:54 - 2014-10-20 13:54 - 00230400 _____ () C:\Program Files\CrashPlan\cpnative64.dll
2014-05-21 05:22 - 2014-05-21 05:22 - 02135232 _____ () C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
2012-02-20 15:43 - 2012-02-20 15:43 - 00016896 _____ () C:\Program Files\MCEBuddy\MCEBuddy.Service.exe
2012-02-20 15:41 - 2012-02-20 15:41 - 00035328 _____ () C:\Program Files\MCEBuddy\MCEBuddy.Engine.dll
2012-02-20 15:44 - 2012-02-20 15:44 - 00030208 _____ () C:\Program Files\MCEBuddy\MCEBuddy.Util.dll
2012-02-20 15:44 - 2012-02-20 15:44 - 00011264 _____ () C:\Program Files\MCEBuddy\MCEBuddy.Globals.dll
2010-01-02 09:42 - 2010-01-02 09:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-10-19 12:11 - 2014-10-19 12:11 - 00472576 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\c29d8779b3a3599f44e21e017541cd0c\VistaBridgeLibrary.ni.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 01807600 _____ () C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
2013-04-15 17:39 - 2013-04-15 17:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-03-23 13:26 - 2010-03-23 13:26 - 00201512 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll
2010-05-25 13:02 - 2010-07-21 11:33 - 00058688 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STCoreXml.dll
2010-05-25 13:02 - 2010-07-21 11:33 - 00116032 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
2010-05-25 13:02 - 2010-07-21 11:33 - 00128320 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
2010-05-25 12:55 - 2009-10-02 13:18 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00275696 _____ () C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00058608 _____ () C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00095472 _____ () C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00152816 _____ () C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll
2009-11-13 16:15 - 2009-11-13 16:15 - 00017648 _____ () C:\Program Files (x86)\Dell DataSafe Online\cpputils.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Karen\Desktop\passport.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Karen\Desktop\passport.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\34262119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\34262119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

Administrator (S-1-5-21-3521837321-3699816946-3115604090-500 - Administrator - Disabled)
Guest (S-1-5-21-3521837321-3699816946-3115604090-501 - Limited - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-3521837321-3699816946-3115604090-1002 - Limited - Enabled)
Karen (S-1-5-21-3521837321-3699816946-3115604090-1003 - Administrator - Enabled) => C:\Users\Karen
Leron (S-1-5-21-3521837321-3699816946-3115604090-1001 - Administrator - Enabled) => C:\Users\Leron

==================== Faulty Device Manager Devices =============

Name: Cisco Systems VPN Adapter for 64-bit Windows
Description: Cisco Systems VPN Adapter for 64-bit Windows
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: CVirtA
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/11/2014 01:43:04 AM) (Source: VSS) (EventID: 12294) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002ED7F0).

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (11/11/2014 01:43:04 AM) (Source: VSS) (EventID: 12294) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002ED7F0).

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (11/11/2014 01:43:04 AM) (Source: VSS) (EventID: 12294) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002ED7F0).

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (11/11/2014 01:43:04 AM) (Source: VSS) (EventID: 12294) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002ED7F0).

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (11/11/2014 01:20:10 AM) (Source: MCEBuddy) (EventID: 0) (User: )
Description: MCEBuddy engine service failed to start. Error:System.InvalidOperationException: The ChannelDispatcher at 'net.pipe://localhost/MCEBuddy' with contract(s) '"ICore"' is unable to open its IChannelListener. ---> System.InvalidOperationException: A registration already exists for URI 'net.pipe://localhost/MCEBuddy'.
   at System.ServiceModel.Channels.UriPrefixTable`1.RegisterUri(Uri uri, HostNameComparisonMode hostNameComparisonMode, TItem item)
   at System.ServiceModel.Channels.ConnectionOrientedTransportManager`1.Register(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManager.Open(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManagerContainer.Open(SelectTransportManagersCallback selectTransportManagerCallback)
   at System.ServiceModel.Channels.NamedPipeChannelListener`2.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   --- End of inner exception stack trace ---
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.ServiceHostBase.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at MCEBuddy.Service.ServiceModule.OnStart(String[] args)

Error: (11/11/2014 01:20:08 AM) (Source: MCEBuddy) (EventID: 0) (User: )
Description: MCEBuddy engine service failed to start. Error:System.InvalidOperationException: The ChannelDispatcher at 'net.pipe://localhost/MCEBuddy' with contract(s) '"ICore"' is unable to open its IChannelListener. ---> System.InvalidOperationException: A registration already exists for URI 'net.pipe://localhost/MCEBuddy'.
   at System.ServiceModel.Channels.UriPrefixTable`1.RegisterUri(Uri uri, HostNameComparisonMode hostNameComparisonMode, TItem item)
   at System.ServiceModel.Channels.ConnectionOrientedTransportManager`1.Register(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManager.Open(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManagerContainer.Open(SelectTransportManagersCallback selectTransportManagerCallback)
   at System.ServiceModel.Channels.NamedPipeChannelListener`2.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   --- End of inner exception stack trace ---
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.ServiceHostBase.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at MCEBuddy.Service.ServiceModule.OnStart(String[] args)

Error: (11/10/2014 11:07:17 PM) (Source: MCEBuddy) (EventID: 0) (User: )
Description: MCEBuddy engine service failed to stop. Error:System.ServiceModel.CommunicationObjectFaultedException: The communication object, System.ServiceModel.Channels.ServiceChannel, cannot be used for communication because it is in the Faulted state.

Server stack trace:
   at System.ServiceModel.Channels.CommunicationObject.ThrowIfDisposedOrNotOpen()
   at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
   at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
   at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)

Exception rethrown at [0]:
   at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
   at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
   at MCEBuddy.Engine.ICore.StopBySystem()
   at MCEBuddy.Service.ServiceModule.OnStop()

Error: (11/10/2014 11:02:27 PM) (Source: MCEBuddy) (EventID: 0) (User: )
Description: MCEBuddy engine service failed to start. Error:System.InvalidOperationException: The ChannelDispatcher at 'net.pipe://localhost/MCEBuddy' with contract(s) '"ICore"' is unable to open its IChannelListener. ---> System.InvalidOperationException: A registration already exists for URI 'net.pipe://localhost/MCEBuddy'.
   at System.ServiceModel.Channels.UriPrefixTable`1.RegisterUri(Uri uri, HostNameComparisonMode hostNameComparisonMode, TItem item)
   at System.ServiceModel.Channels.ConnectionOrientedTransportManager`1.Register(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManager.Open(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManagerContainer.Open(SelectTransportManagersCallback selectTransportManagerCallback)
   at System.ServiceModel.Channels.NamedPipeChannelListener`2.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   --- End of inner exception stack trace ---
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.ServiceHostBase.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at MCEBuddy.Service.ServiceModule.OnStart(String[] args)

Error: (11/10/2014 11:01:17 PM) (Source: MCEBuddy) (EventID: 0) (User: )
Description: MCEBuddy engine service failed to stop. Error:System.ServiceModel.CommunicationObjectFaultedException: The communication object, System.ServiceModel.Channels.ServiceChannel, cannot be used for communication because it is in the Faulted state.

Server stack trace:
   at System.ServiceModel.Channels.CommunicationObject.ThrowIfDisposedOrNotOpen()
   at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
   at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
   at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)

Exception rethrown at [0]:
   at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
   at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
   at MCEBuddy.Engine.ICore.StopBySystem()
   at MCEBuddy.Service.ServiceModule.OnStop()

Error: (11/10/2014 10:56:32 PM) (Source: MCEBuddy) (EventID: 0) (User: )
Description: MCEBuddy engine service failed to start. Error:System.InvalidOperationException: The ChannelDispatcher at 'net.pipe://localhost/MCEBuddy' with contract(s) '"ICore"' is unable to open its IChannelListener. ---> System.InvalidOperationException: A registration already exists for URI 'net.pipe://localhost/MCEBuddy'.
   at System.ServiceModel.Channels.UriPrefixTable`1.RegisterUri(Uri uri, HostNameComparisonMode hostNameComparisonMode, TItem item)
   at System.ServiceModel.Channels.ConnectionOrientedTransportManager`1.Register(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManager.Open(TransportChannelListener channelListener)
   at System.ServiceModel.Channels.TransportManagerContainer.Open(SelectTransportManagersCallback selectTransportManagerCallback)
   at System.ServiceModel.Channels.NamedPipeChannelListener`2.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   --- End of inner exception stack trace ---
   at System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at System.ServiceModel.ServiceHostBase.OnOpen(TimeSpan timeout)
   at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
   at MCEBuddy.Service.ServiceModule.OnStart(String[] args)

System errors:
=============
Error: (11/10/2014 09:06:24 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.

Error: (11/09/2014 07:27:11 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (11/09/2014 07:27:10 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (11/09/2014 07:27:01 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
RxFilter

Error: (11/09/2014 07:26:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SessionLauncher service failed to start due to the following error:
%%2

Error: (11/09/2014 07:25:27 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Security Center service terminated with the following error:
%%1747

Error: (11/09/2014 07:22:52 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
RxFilter

Error: (11/09/2014 07:22:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SessionLauncher service failed to start due to the following error:
%%2

Error: (11/09/2014 07:19:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (11/09/2014 07:19:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Microsoft Office Sessions:
=========================
Error: (12/15/2011 03:00:09 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 11 seconds with 0 seconds of active time.  This session ended with a crash.

CodeIntegrity Errors:
===================================
  Date: 2014-10-13 21:17:17.241
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-10-13 21:17:17.051
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-10-13 21:17:16.844
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-10-13 21:17:16.637
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel® Core™ i7 CPU 860 @ 2.80GHz
Percentage of memory in use: 27%
Total physical RAM: 8151.08 MB
Available physical RAM: 5885.23 MB
Total Pagefile: 16300.34 MB
Available Pagefile: 12453.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:455.31 GB) (Free:108.54 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 8A427EA7)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=10.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=455.3 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#11 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:53 AM

Posted 11 November 2014 - 11:28 AM


warning.gif Malware Warning

All passwords should be changed immediately to include those used for banking, email, eBay, paypal and online forums from a CLEAN COMPUTER.

xgoGMWSt.gif.pagespeed.ic.T3xMEQZT0d.png Multiple Anti-Virus-Software Warning

It is inadvisable to have more than one Anti-Virus installed on your computer at the same time. Doing so may:
  • Cause conflicts, negatively impacting the effectiveness of each Anti-Virus installed.
  • Trigger false-positives.
  • Trigger false-negatives, where neither programme detects malware.
  • Cause system instability/performance issues. Your system may lock up or slow down due to both software attempting to access the same file at the same time.
Step 1
  • Press the WindowsKey.png + R on your keyboard at the same time. Type appwiz.cpl and click OK.
  • Search for AVG AntiVirus or COMODO Antivirus , right-click the entry and click Uninstall.
Let's do a final check up:

Step 2


Don't remove on your own anything that Hitman Pro detects!
This scanner, as it is a really good for checking, has been known for deleting files instead of curing them, which in some cases may render the machine unbootable.
Any removals will be done manually after careful analysis of the scan results!


Please download hitmanpro_32.pngHitmanPro 32-bit / HitmanPro 64-bit by SurfRight and save it to your desktop.
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.
  • Right-click onhitmanpro.pngicon and select admin.PNGRun as Administrator to start the tool.
  • If the program won't run please run it while holding down the left CTRL key until it's loaded!
  • Click on the Next button (1). You must agree with the terms of EULA (2 - if asked).
  • Check the box beside "No, I only want to perform a one-time scan to check this computer" and click on the Next button. (3)
  • The program will start to scan the computer. It would only take several minutes.
  • When the scan is done click on Save Log (4) and close HitmanPro! (5)
  • Copy and paste the content of the log file in your next reply.
hitman.gif


Step 3

Please downloadesetlogo.pngOnline Scanner and save it to your Desktop.
  • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
  • Start installer.pngwith administartor privileges.
  • Select the option Yes, I accept the Terms of Use and click on Start.
  • Choose the following settings:
settings.png
  • Click on Start. The virus signature database will begin to download. This may take some time.
  • When completed the Online Scan will begin automatically.
    Note: This scan might take a long time! Please be patient.
  • When completed select Uninstall application on close if you so wish, but make sure you copy the logfile first!
  • Now click on Finish
  • A log filelog.pngis created at logpath.png
    Copy and paste the content of this log file in your next reply.
Note: Do not forget to re-enable your antivirus application after running the above scan!
eset.gif

lesestoff.png

Can you please tell me which problems still persist now?
How is the computer running

Edited by deeprybka, 11 November 2014 - 11:29 AM.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#12 LThumim

LThumim
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 14 November 2014 - 10:13 AM

I uninstalled AVG.

 

Here's the Hitman log:

 

HitmanPro 3.7.9.232
www.hitmanpro.com
   Computer name . . . . : LTSDESKTOP
   Windows . . . . . . . : 6.1.1.7601.X64/8
   User name . . . . . . : LTsDesktop\Leron
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free
   Scan date . . . . . . : 2014-11-14 03:12:11
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 21m 50s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No
   Threats . . . . . . . : 0
   Traces  . . . . . . . : 155
   Objects scanned . . . : 4,540,069
   Files scanned . . . . : 441,074
   Remnants scanned  . . : 2,327,324 files / 1,771,671 keys
Suspicious files ____________________________________________________________
   C:\Users\Leron\Desktop\FRST64.exe
      Size . . . . . . . : 2,116,096 bytes
      Age  . . . . . . . : 4.4 days (2014-11-09 17:09:36)
      Entropy  . . . . . : 7.5
      SHA-256  . . . . . : 9D17E46B4EAEC0509800C43B23765D00810EA2CEF362301BFB2E0B174DFE5AFD
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.

Cookies _____________________________________________________________________
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:247realmedia.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:2o7.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:3dayblinds.112.2o7.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ad.360yield.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ad.mlnadvertising.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:adinterax.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ads.clrsrv.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ads.creative-serving.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ads.p161.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ads.pointroll.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ads.pubmatic.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ads.undertone.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ads.videohub.tv
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ads.yahoo.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:adserve.postrelease.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:adtech.de
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:adtechus.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ar.atwola.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:at.atwola.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:atwola.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:bs.serving-sys.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:citi.bridgetrack.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:collective-media.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:giftscom.122.2o7.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:interclick.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:kontera.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:media6degrees.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:mtvn.112.2o7.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:network.realmedia.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:njmvc.112.2o7.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:overture.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:pd0.imp.revsci.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:pointroll.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:questionmarket.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:realmedia.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:revsci.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:ru4.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:serving-sys.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:smartadserver.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:specificclick.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:stat.dealtime.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:stats.paypal.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:tacoda.at.atwola.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:timeinc.122.2o7.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:track.adform.net
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:track.everydayfamily.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:tribalfusion.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:www.googleadservices.com
   C:\Users\Karen\AppData\Roaming\Mozilla\Firefox\Profiles\20x79sjk.default\cookies.sqlite:yieldmanager.net
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\02C2XDHX.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\0G38ZJ93.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\0JP26KXQ.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\1R28ULHX.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\2FO4MJJ0.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\2XR447CG.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\2XX9EMW9.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\3RF6B7NZ.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\47IAMD8K.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\568FNEGL.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\5HEQCQ5E.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\62QRTIV3.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\73F5I5DK.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\7MLWBXXQ.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\83JNGLYT.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\8IGV1M01.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\BL64K3F2.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\C5K2XLIU.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\CBK4Z665.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\D0RXLLM3.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\D3FT3OOO.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\G2LQ4I0H.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\H0TQC0D3.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\HJG4S1JR.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\I7H3QA0K.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\K9JET3XT.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\NNE8V7Q9.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\O359QHQ1.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\OY3ZZ3TO.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\P7KMCNXF.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\PCP85YKC.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\Q8G8KHB2.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\QDA5P0WI.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\QGDGL5SX.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\QIU43QUY.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\R9E979TM.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\SXFG5UJU.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\U48YSNJM.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\U4GK6EAK.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\VOZ6Y33U.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\VY1TFDU3.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\X219ZBRJ.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\X6OR7JUO.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\YLO9RO5B.txt
   C:\Users\Leron\AppData\Roaming\Microsoft\Windows\Cookies\YU2FM4AP.txt
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:247realmedia.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ad.360yield.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ad.mlnadvertising.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:adbrite.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:adinterax.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:adlegend.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.bridgetrack.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.creative-serving.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.extremereach.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.mediade.sk
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.nba.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.p161.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.pointroll.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.pubmatic.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.servebom.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.stickyadstv.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.thehiveworks.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.undertone.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.us.e-planning.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ads.yahoo.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:adtechus.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:at.atwola.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:atwola.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:bs.serving-sys.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:collective-media.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:dmtracker.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:equifaxps.122.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ero-advertising.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:experianservicescorp.122.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:in.getclicky.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:interclick.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:invitemedia.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:kontera.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:leeenterprises.112.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:media6degrees.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:msnbc.112.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:mtvn.112.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:network.realmedia.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:overture.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:pointroll.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:pool-eu-ie.creative-serving.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:questionmarket.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:realmedia.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:revsci.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:rtst.122.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:ru4.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:server.cpmstar.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:serving-sys.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:smartadserver.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:specificclick.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:stats.adotube.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:timeinc.122.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:track.adform.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:tribalfusion.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:tribuneinteractive.122.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:uk.sitestat.com
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:verizontelecom.112.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:warnerbros.112.2o7.net
   C:\Users\Leron\AppData\Roaming\Mozilla\Firefox\Profiles\6cjj4icb.default\cookies.sqlite:xiti.com

 

And here's the Eset online scanner log:

 

C:\Users\All Users\COMODO\Cis\Quarantine\data\{004BE970-2693-47E4-8335-300F784A0170} a variant of Win32/InstallIQ potentially unwanted application 
C:\Users\All Users\COMODO\Cis\Quarantine\data\{06019A78-C542-4AD9-AA9D-ECA817FCCEDB} a variant of Win32/DownloadSponsor.A potentially unwanted application 
C:\Users\All Users\COMODO\Cis\Quarantine\data\{0725CD89-CBD4-463E-A945-05734AB473BE} a variant of Win32/DownloadSponsor.A potentially unwanted application 
C:\Users\All Users\COMODO\Cis\Quarantine\data\{CB5C4E35-857F-44BA-891F-845DA31A839F} a variant of Win32/InstallIQ.A potentially unwanted application 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer14.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer15.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer16.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer17.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer18.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer4.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer5.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer6.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer7.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer8.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer9.zip Win32/Bagle.gen.zip worm 
C:\My Entire Old Drive\Internet\aim95\Sysfiles\WxBug.EXE Win32/Adware.WBug.A application cleaned by deleting - quarantined
C:\ProgramData\COMODO\Cis\Quarantine\data\{004BE970-2693-47E4-8335-300F784A0170} a variant of Win32/InstallIQ potentially unwanted application deleted - quarantined
C:\ProgramData\COMODO\Cis\Quarantine\data\{06019A78-C542-4AD9-AA9D-ECA817FCCEDB} a variant of Win32/DownloadSponsor.A potentially unwanted application deleted - quarantined
C:\ProgramData\COMODO\Cis\Quarantine\data\{0725CD89-CBD4-463E-A945-05734AB473BE} a variant of Win32/DownloadSponsor.A potentially unwanted application deleted - quarantined
C:\ProgramData\COMODO\Cis\Quarantine\data\{CB5C4E35-857F-44BA-891F-845DA31A839F} a variant of Win32/InstallIQ.A potentially unwanted application deleted - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer14.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer15.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer16.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer17.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer18.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer4.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer5.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer6.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer7.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer8.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AvanquestPCSpeedMaximizer9.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\Users\Karen\AppData\Local\Temp\air8483.exe a variant of Win32/Toolbar.Visicom.C potentially unwanted application deleted - quarantined
C:\Users\Karen\AppData\Local\Temp\cache\vol_bt_all.exe a variant of Win32/Toolbar.Visicom.A potentially unwanted application deleted - quarantined
C:\Users\Leron\AppData\Local\Temp\3410\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IJ3721LD\jnqete5uf7[1].htm JS/Exploit.Agent.NHV trojan cleaned by deleting - quarantined
C:\Users\Leron\AppData\Local\Temp\460c\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EM1DSPTY\z1tbb3s2wc[1].htm JS/Exploit.Agent.NHX trojan cleaned by deleting - quarantined
C:\Users\Leron\AppData\Local\Temp\7c8\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V5E7SUKM\cexu3nwgjs[1].htm JS/Exploit.Agent.NHV trojan cleaned by deleting - quarantined
C:\Users\Leron\AppData\Local\Temp\fb8\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QSP99KBS\sutwfq38ju[1].htm JS/Exploit.Agent.NHV trojan cleaned by deleting - quarantined
 



#13 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:53 AM

Posted 14 November 2014 - 10:39 AM

lesestoff.png

Can you please tell me which problems still persist now?
How is the computer running?

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#14 LThumim

LThumim
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 14 November 2014 - 10:49 AM

The computer is definitely running better than before.



#15 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:53 AM

Posted 14 November 2014 - 11:42 AM

And here's the Eset online scanner log:


Can you please try to post the complete ESET Log:
 

A log filelog.pngis created at logpath.png
Copy and paste the content of this log file in your next reply.

esetlog.png


regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users