Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

poweliks plus others???

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

poweliks plus others???

Unread postby flip665 » January 16th, 2015, 4:40 pm

hello malware removal team, i have read most "read this first" posts and am aware of the rules posting here. i will try to the best of my abilities to follow all instruction. due to recent experiences ive grown hesitant to interpret instructions that are "open to interpretation" being that a large part of the instruction is canned with tweaks to the user. so if i dont fully understand, forgive me if i inquire before executing.

the most offensive problem i had was multiple dllhost surrogates maxxing out my cpu. i was told by some that this was poweliks, though while my norton AV always said something about blocking trojan adclicker. when that happened i would be swamped with windows saying random adobe reader failure causes...

accompanying this was the inability to download anything regardless of internet security option settings, flashplayer constantly being blocked, and a host of other frustration inducing moments which i cant recall at the moment but i know ive largely been mad at this computer for the last six months. i believe norton was activated at this time but it has since expired since i dont have the money to renew. and i tried norton 360 (a free 30 day trial that has expired) and that didnt help either.

i tried a malware removal site and thats a long story but the short version is that i was informed i had powliks among other things.

ran FRST.

dl'd powliks fixer and eset.

poweliks fixer seemed to have an effect. but at some point apparently ive misenterpreted something and im no longer recieveing help from them.


so my current situation is that i no longer "seem" to have any problems but i know things arent finished so i am hoping someone is gracious enough to help me pick up and put the pieces back together.

i have a dell vostro 1720 running 32bit windows 7 pro sp1

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 11.0.9600.17496
Run by annie at 15:03:14 on 2015-01-16
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.3033.1995 [GMT -5:00]
.
AV: Norton 360 *Disabled/Outdated* {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
SP: Norton 360 *Disabled/Outdated* {631E4324-D31C-783F-EC5C-35AD42B18466}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 *Disabled* {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_5f120bca41bba11b\STacSV.exe
C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\dleacoms.exe
C:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe
C:\Windows\system32\DRIVERS\o2flash.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\System32\rundll32.exe
C:\Windows\Explorer.EXE
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe
C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Windows\OEM13Mon.exe
C:\Windows\System32\igfxtray.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Users\annie\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uSearch Bar = Preserve
BHO: AutorunsDisabled - <orphaned>
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\program files\norton 360\engine\21.6.0.32\coieplg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - c:\program files\norton 360\engine\21.6.0.32\ips\ipsbho.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [Google Update] "c:\users\annie\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [SysTrayApp] c:\program files\idt\wdm\sttray.exe
mRun: [Broadcom Wireless Manager UI] c:\program files\dell\dell wireless wlan card\WLTRAY.exe
mRun: [PDVDDXSrv] "c:\program files\cyberlink\powerdvd dx\PDVDDXSrv.exe"
mRun: [OEM13Mon.exe] c:\windows\OEM13Mon.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
dRunOnce: [SPReview] "c:\windows\system32\spreview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.co ... .5.1.0.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{2AB9E485-708B-49F3-8812-C949B4371CF8} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{F02B3872-A257-460C-B9DC-2623E5003C29} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{F02B3872-A257-460C-B9DC-2623E5003C29}\2456C6B696E6F5E413F575962756C6563737F5339354248343 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{F02B3872-A257-460C-B9DC-2623E5003C29}\2656C6B696E6534376 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{F02B3872-A257-460C-B9DC-2623E5003C29}\56C6C696F64747 : DHCPNameServer = 66.189.0.100 24.159.64.23 24.247.24.53
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: igfxcui - igfxdev.dll
AppInit_DLLs= c:\progra~1\search~1\datamngr\mgrldr.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\39.0.2171.95\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\n360\1506000.020\symds.sys [2014-10-25 367704]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\n360\1506000.020\symefa.sys [2014-10-25 936152]
R1 BHDrvx86;BHDrvx86;c:\program files\norton 360\nortondata\21.1.0.18\definitions\bashdefs\20141118.001\BHDrvx86.sys [2014-11-19 1138392]
R1 ccSet_N360;N360 Settings Manager;c:\windows\system32\drivers\n360\1506000.020\ccsetx86.sys [2014-10-25 127064]
R1 IDSVix86;IDSVix86;c:\program files\norton 360\nortondata\21.1.0.18\definitions\ipsdefs\20141124.001\IDSvix86.sys [2014-11-24 479448]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\n360\1506000.020\ironx86.sys [2014-10-25 209624]
R1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\n360\1506000.020\symnets.sys [2014-10-25 447704]
R2 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\SeaPort.EXE [2011-10-13 249648]
R2 dlea_device;dlea_device;c:\windows\system32\dleacoms.exe -service --> c:\windows\system32\dleacoms.exe -service [?]
R2 N360;Norton 360;c:\program files\norton 360\engine\21.6.0.32\n360.exe [2014-10-25 265040]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2014-10-25 111408]
R3 O2MDGRDR;O2MDGRDR;c:\windows\system32\drivers\o2mdg.sys [2009-12-4 58528]
R3 O2SDGRDR;O2SDGRDR;c:\windows\system32\drivers\o2sdg.sys [2009-12-4 41504]
R3 OEM13Vfx;Creative Camera OEM013 Video VFX Driver;c:\windows\system32\drivers\OEM13Vfx.sys [2007-3-5 7424]
R3 OEM13Vid;Creative Camera OEM013 Driver;c:\windows\system32\drivers\OEM13Vid.sys [2008-5-28 235840]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-12-4 167936]
S2 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-10-21 196176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 dleaCATSCustConnectService;dleaCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\dleaserv.exe [2009-7-1 98984]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2014-1-22 49664]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2013-2-5 1512448]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-12-14 102912]
S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-6-7 52224]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-2-28 1343400]
.
=============== Created Last 30 ================
.
2015-01-16 20:03:45 62576 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{a1b24631-bbee-4630-b99b-dc0af3680e3c}\offreg.dll
2015-01-16 16:34:36 9054624 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{a1b24631-bbee-4630-b99b-dc0af3680e3c}\mpengine.dll
2015-01-14 15:22:47 3971512 ----a-w- c:\windows\system32\ntkrnlpa.exe
2015-01-14 15:22:46 3916728 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-01-14 15:22:41 46592 ----a-w- c:\windows\system32\TSWbPrxy.exe
2015-01-14 15:22:41 242688 ----a-w- c:\windows\system32\nlasvc.dll
2015-01-14 15:22:41 164864 ----a-w- c:\windows\system32\profsvc.dll
2015-01-14 15:22:40 116224 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2015-01-12 21:46:28 -------- d-----w- C:\FRST
2014-12-18 01:02:53 115712 ----a-w- c:\windows\system32\ieUnatt.exe
.
==================== Find3M ====================
.
2015-01-14 02:51:06 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-01-14 02:51:06 701616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-01-06 09:36:02 249488 ------w- c:\windows\system32\MpSigStub.exe
2014-12-04 04:38:59 337920 ----a-w- c:\windows\system32\generaltel.dll
2014-12-04 04:38:45 610304 ----a-w- c:\windows\system32\invagent.dll
2014-12-04 04:38:40 315392 ----a-w- c:\windows\system32\devinv.dll
2014-12-04 04:38:37 728576 ----a-w- c:\windows\system32\appraiser.dll
2014-12-04 04:38:36 202752 ----a-w- c:\windows\system32\aepdu.dll
2014-12-04 04:38:36 159744 ----a-w- c:\windows\system32\aepic.dll
2014-12-04 04:34:13 873984 ----a-w- c:\windows\system32\aeinv.dll
2014-12-01 23:28:26 1160872 ----a-w- c:\windows\system32\aitstatic.exe
2014-11-22 02:20:44 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-11-22 02:20:30 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-11-22 02:07:43 501248 ----a-w- c:\windows\system32\vbscript.dll
2014-11-22 02:07:17 62464 ----a-w- c:\windows\system32\iesetup.dll
2014-11-22 02:06:32 47616 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-11-22 02:05:02 64000 ----a-w- c:\windows\system32\MshtmlDac.dll
2014-11-22 01:55:14 102912 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-11-22 01:54:30 620032 ----a-w- c:\windows\system32\jscript9diag.dll
2014-11-22 01:48:26 667648 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-11-22 01:40:04 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2014-11-22 01:29:26 4299264 ----a-w- c:\windows\system32\jscript9.dll
2014-11-22 01:22:49 2052096 ----a-w- c:\windows\system32\inetcpl.cpl
2014-11-22 01:21:57 1155072 ----a-w- c:\windows\system32\mshtmlmedia.dll
2014-11-22 01:00:20 1888256 ----a-w- c:\windows\system32\wininet.dll
2014-11-11 02:44:45 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-11-11 02:44:32 186880 ----a-w- c:\windows\system32\pku2u.dll
2014-11-11 02:44:25 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-11-11 01:32:14 74752 ----a-w- c:\windows\system32\drivers\tdx.sys
2014-11-08 02:45:09 2048 ----a-w- c:\windows\system32\tzres.dll
2014-10-30 01:45:43 155136 ----a-w- c:\windows\system32\charmap.exe
2014-10-25 13:51:44 142936 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
2014-10-25 01:32:37 67584 ----a-w- c:\windows\system32\packager.dll
.
============= FINISH: 15:04:15.16 ===============



.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 12/25/2009 3:29:08 PM
System Uptime: 1/16/2015 11:29:27 AM (4 hours ago)
.
Motherboard: Dell Inc. | | 0C160T
Processor: Intel(R) Core(TM)2 Duo CPU T6670 @ 2.20GHz | U2E1 | 2201/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 218 GiB total, 100.955 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP808: 12/6/2014 12:45:43 PM - Windows Update
RP809: 12/14/2014 3:47:32 PM - Windows Update
RP810: 12/15/2014 3:00:16 AM - Windows Update
RP811: 12/20/2014 1:14:24 AM - Windows Update
RP812: 12/20/2014 3:00:12 AM - Windows Update
RP813: 12/25/2014 12:41:16 AM - Windows Update
RP814: 1/3/2015 12:10:38 PM - Windows Update
RP815: 1/7/2015 4:26:48 PM - Windows Update
RP816: 1/13/2015 11:06:35 AM - Windows Update
RP817: 1/14/2015 10:46:11 AM - Windows Update
.
==== Installed Programs ======================
.
7-Zip 9.20
Adobe Flash Player 16 ActiveX
Adobe Reader 8.1.0
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Bing Bar
Bonjour
Cisco Connect
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Coupon Printer for Windows
D3DX10
Dell Backup and Recovery Manager
Dell Edoc Viewer
Dell Touchpad
Dell V310-V510 Series
Dell Wireless WLAN Card Utility
Google Chrome
Google Earth
Google Talk Plugin
Google Toolbar for Internet Explorer
Google Update Helper
Intel(R) Graphics Media Accelerator Driver
Intel(R) TV Wizard
iTunes
Java Auto Updater
Java(TM) 6 Update 38
Junk Mail filter update
Kerbal Space Program
Laptop Integrated Webcam Driver (1.01.01.0529)
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Silverlight
Microsoft SkyDrive
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Movie Maker
MSVCRT
MSVCRT110
Norton 360
Norton Internet Security
Origin
Photo Common
Photo Gallery
PowerDVD DX
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE 10.3
Roxio Creator Tools
Roxio Express Labeler 3
Roxio Update Manager
Satsuki Decoder Pack
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Silent Hunter Wolves of the Pacific
SPORE™
Steam
System Requirements Lab CYRI
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
.
==== Event Viewer Messages From Past Week ========
.
1/16/2015 11:29:54 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the dleaCATSCustConnectService service to connect.
1/16/2015 11:29:54 AM, Error: Service Control Manager [7000] - The dleaCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
1/12/2015 5:41:41 PM, Error: Schannel [36887] - The following fatal alert was received: 20.
.
==== End Of File ===========================
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm
Advertisement
Register to Remove

Re: poweliks plus others???

Unread postby wannabeageek » January 17th, 2015, 12:34 am

Hi flip665,

I have some very bad news about Poweliks.


By the time you find the infection, the attacker/hacker has already turned your computer into a "zombie/bot" http://en.wikipedia.org/wiki/Zombie_(computer_science)

The topic below explains in detail about Remote Access Infections.
Remote Access Infections ... (why you should repave)

Would you be kind enough to link to the forum where you were getting help that I might review all that was done? I am curious about the "other things".
i tried a malware removal site and thats a long story but the short version is that i was informed i had powliks among other things.


Thank you,
wbg
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: poweliks plus others???

Unread postby flip665 » January 17th, 2015, 11:43 am

hey wannabeageek, thanks for the reply.

have read your links and am a little concerned. i dont ahve the slightest clue on how to "repave", nor do i have anything larger than a 1g sd card to back up. i do have an old desk top but only a ethernet cable to connect them and being that potentially eveything could be infected, im not real sure i want to... which raises the questions -whats the point of eset tool or poweliks fixer that i ran? and -how does one even know that someone has it, or fix it, if its fileless?.?.

as far as linking you to the previous forum, im not sure thats going to be an option as its been removed.

i can how ever tell you exactly what was done if you think it will help.

also i have the original FRST logs on my desktop, along with everything else. (i.e. eset tool, powelicks fixer{by symantec i believe, and all logs/screenshots that i posted while i was recieving help.

i will gladly show/tell all of this, but as this site says dont post anything unless instructed, and i got booted from the last site for not follwing instruction, i'll wait and see which way youd like to go with this...
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm

Re: poweliks plus others???

Unread postby wannabeageek » January 17th, 2015, 3:40 pm

Hi flip665,

Please post the original FRST logs. I will get back with you on your other questions.

wbg
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: poweliks plus others???

Unread postby flip665 » January 17th, 2015, 5:06 pm

first log, frst addition to follow...

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-01-2015 02
Ran by annie (administrator) on ANNIE-PC on 12-01-2015 16:46:38
Running from C:\Users\annie\Desktop
Loaded Profile: annie (Available profiles: annie)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_5f120bca41bba11b\stacsv.exe
() C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Program Files\Dell\Dell Wireless WLAN Card\BCMWLTRY.EXE
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
( ) C:\Windows\System32\dleacoms.exe
(Symantec Corporation) C:\Program Files\Norton 360\Engine\21.6.0.32\n360.exe
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Symantec Corporation) C:\Program Files\Norton 360\Engine\21.6.0.32\n360.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Dell Inc.) C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
(Creative Technology Ltd.) C:\Windows\OEM13Mon.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Google Inc.) C:\Users\annie\AppData\Local\Google\Update\GoogleUpdate.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\cmmon32.exe
(Microsoft Corporation) C:\Windows\System32\cmmon32.exe
(Microsoft Corporation) C:\Windows\System32\dplaysvr.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\dplaysvr.exe
(Microsoft Corporation) C:\Windows\System32\regsvr32.exe
(Microsoft Corporation) C:\Windows\System32\dplaysvr.exe
(Microsoft Corporation) C:\Windows\System32\logagent.exe
(Microsoft Corporation) C:\Windows\System32\logagent.exe
(Microsoft Corporation) C:\Windows\System32\upnpcont.exe
(Microsoft Corporation) C:\Windows\System32\dvdupgrd.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [217088 2009-06-29] (Alps Electric Co., Ltd.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [458844 2009-07-15] (IDT, Inc.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe [4562944 2009-07-16] (Dell Inc.)
HKLM\...\Run: [PDVDDXSrv] => C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520 2009-06-24] (CyberLink Corp.)
HKLM\...\Run: [OEM13Mon.exe] => C:\Windows\OEM13Mon.exe [36864 2008-01-07] (Creative Technology Ltd.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40048 2007-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKU\S-1-5-21-3287317925-2951633530-1351593121-1000\...\Run: [Google Update] => C:\Users\annie\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-25] (Google Inc.)
HKU\S-1-5-21-3287317925-2951633530-1351593121-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-05-10] (Google Inc.)
HKU\S-1-5-21-3287317925-2951633530-1351593121-1000\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-19] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~1\SEARCH~1\Datamngr\mgrldr.dll => C:\PROGRA~1\SEARCH~1\Datamngr\mgrldr.dll File Not Found
ShellIconOverlayIdentifiers: [OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton 360\Engine\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton 360\Engine\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton 360\Engine\21.6.0.32\buShell.dll (Symantec Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3287317925-2951633530-1351593121-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = http://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_mdaffmarmar_14_43_ie&cd=2XzuyEtN2Y1L1QzuzytDyE0C0EyDyDtCtAtC0BzyyC0DtA0DtN0D0Tzu0StCtDtBzytN1L2XzutAtFyDtFtCtFyEtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyE0D0A0EtA0DtC0AtGyEtCzz0AtGyC0A0D0BtGtD0FyDyEtGyB0EtCtAtAyEyBtDyB0B0Czz2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyB0AzzyD0CtD0A0EtGyB0EzzyBtGyEtDtB0EtG0AtDyC0FtG0FtC0B0AyE0E0AzyyB0B0Czz2Q&cr=1260345880&ir=
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0B471A60-1235-4E46-AAD3-ED2A97F3FD42} URL = http://www.bing.com/search?q={searchTerms}&form=DLSDF8&pc=MDDS&src=IE-SearchBox
SearchScopes: HKLM -> {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = http://dts.search-results.com/sr?src=ie ... nrs=AGE&q={searchTerms}
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = http://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_mdaffmarmar_14_43_ie&cd=2XzuyEtN2Y1L1QzuzytDyE0C0EyDyDtCtAtC0BzyyC0DtA0DtN0D0Tzu0StCtDtBzytN1L2XzutAtFyDtFtCtFyEtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyE0D0A0EtA0DtC0AtGyEtCzz0AtGyC0A0D0BtGtD0FyDyEtGyB0EtCtAtAyEyBtDyB0B0Czz2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyB0AzzyD0CtD0A0EtGyB0EzzyBtGyEtDtB0EtG0AtDyC0FtG0FtC0B0AyE0E0AzyyB0B0Czz2Q&cr=1260345880&ir=
SearchScopes: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000 -> {0B471A60-1235-4E46-AAD3-ED2A97F3FD42} URL =
SearchScopes: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000 -> {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL =
SearchScopes: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL =
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.co ... .5.1.0.cab
Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=1.6.0_38 -> C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3287317925-2951633530-1351593121-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\annie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKU\S-1-5-21-3287317925-2951633530-1351593121-1000: @talk.google.com/O1DPlugin -> C:\Users\annie\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKU\S-1-5-21-3287317925-2951633530-1351593121-1000: @tools.google.com/Google Update;version=3 -> C:\Users\annie\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll No File
FF Plugin ProgramFiles/Appdata: C:\Users\annie\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\annie\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF HKLM\...\Firefox\Extensions: [{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn
FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2014-10-25]
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn [2015-01-12]
FF HKU\S-1-5-21-3287317925-2951633530-1351593121-1000\...\Firefox\Extensions: [{ACB15C83-180B-4D7F-AE6A-7A97870D2EE3}] - C:\Users\annie\AppData\Local\{ACB15C83-180B-4D7F-AE6A-7A97870D2EE3}
FF Extension: XULRunner - C:\Users\annie\AppData\Local\{ACB15C83-180B-4D7F-AE6A-7A97870D2EE3} [2011-06-22]
FF HKU\S-1-5-21-3287317925-2951633530-1351593121-1000\...\Firefox\Extensions: [uc@uc.com] - C:\Program Files\Unfriend Checker\FF

Chrome:
=======
CHR Profile: C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Tetris Battle) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\adjkpghbnknolhdbgpllnfmohekjfjmo [2013-05-11]
CHR Extension: (Graphicly Comics) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfahkchgjncmgadmplfkeancoeljcmhp [2013-05-11]
CHR Extension: (Audiotool) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkgoccjhfjgjedhkiefaclppgbmoobnk [2013-05-11]
CHR Extension: (YouTube) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-05-11]
CHR Extension: (Facebook Colour Changer) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpllmoilcakpgbeodibeifcfnndoheam [2013-05-11]
CHR Extension: (Google Search) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-05-11]
CHR Extension: (AutoCAD 360) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln [2013-05-11]
CHR Extension: (Sleepy Jack) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\edjdoaebnejlnjknbkbacepgemnjlmfc [2013-05-11]
CHR Extension: (DoNotTrackMe) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd [2013-05-11]
CHR Extension: (Springpad) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkmopoamfjnmppabeaphohombnjcjgla [2013-05-11]
CHR Extension: (Cull TV) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gofijfkjdoldpfdcgjeajagjgddfmihf [2013-05-11]
CHR Extension: (TinEye Reverse Image Search) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2013-05-11]
CHR Extension: (Marvel Comics) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjhfaknohpjconjoefidanhihokmkice [2013-05-11]
CHR Extension: (wikiHow Survival Kit) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ickaeddjnhfofihhibhnjemlphjmnchl [2013-05-11]
CHR Extension: (Google Play Music) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2013-05-11]
CHR Extension: (MeeGenius! Children's Books) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhfhmaajajcjoijfaceafiembkmhcddc [2013-05-11]
CHR Extension: (Typing Test - KeyHero) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkcieoaeooeidmpaopkpjpjfakidlabm [2013-05-11]
CHR Extension: (eBay Extension for Google Chrome™ (by eBay)) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\khhckppjhonfmcpegdjdibmngahahhck [2013-05-11]
CHR Extension: (Steam Widget [ANTP]) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kokekkjinjjhogejegmdpledkflcifdo [2013-05-11]
CHR Extension: (Sketchpad) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkllajgbhondgjjnhmmgbjndmogapinp [2013-05-11]
CHR Extension: (The Fancy Pants Adventure: World 2) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\loamdenijebhollnjgehcfbnpeelfhlk [2013-05-11]
CHR Extension: (Awesome New Tab Page™) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgmiemnjjchgkmgbeljfocdjjnpjnmcg [2013-05-11]
CHR Extension: (deviantART muro) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\namljbfbglehfnlonjmebceimaalofei [2013-05-11]
CHR Extension: (Springpad Extension) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\njhgeimnepehieioinbhmfpphfoocmng [2013-05-11]
CHR Extension: (Google Wallet) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-21]
CHR Extension: (Winter Night in Moonlight) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\offcedjaceddaegkpebcocccakpdjkin [2013-05-11]
CHR Extension: (Mini Ninjas) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oijfbknbncemokdnlboeabbcfhobechi [2013-05-11]
CHR Extension: (Gmail) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-05-11]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx [2014-10-25]
CHR HKLM\...\Chrome\Extension: [pfkfdlcdbajamklbneflfbcmfgddmpae] - No Path
CHR HKU\S-1-5-21-3287317925-2951633530-1351593121-1000\...\Chrome\Extension: [pfkfdlcdbajamklbneflfbcmfgddmpae] - No Path

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 dleaCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\dleaserv.exe [98984 2009-07-01] ()
R2 dlea_device; C:\Windows\system32\dleacoms.exe [602792 2009-07-01] ( )
R2 N360; C:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe [265040 2014-09-21] (Symantec Corporation)
R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [65536 2007-02-12] (O2Micro International)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_5f120bca41bba11b\STacSV.exe [221266 2009-07-15] (IDT, Inc.)
R2 wltrysvc; C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe [3086848 2009-07-16] (Dell Inc.) [File not signed]
S3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [18424 2009-07-16] (Broadcom Corporation)
R1 BHDrvx86; C:\Program Files\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20141118.001\BHDrvx86.sys [1138392 2014-10-16] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360\1506000.020\ccSetx86.sys [127064 2013-09-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [378672 2014-10-24] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [111408 2014-10-24] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20141124.001\IDSvix86.sys [479448 2014-11-17] (Symantec Corporation)
S3 NAVENG; C:\Program Files\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20141124.003\NAVENG.SYS [95704 2014-10-30] (Symantec Corporation)
S3 NAVEX15; C:\Program Files\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20141124.003\NAVEX15.SYS [1636696 2014-10-30] (Symantec Corporation)
R3 O2MDGRDR; C:\Windows\System32\DRIVERS\o2mdg.sys [58528 2009-05-22] (O2Micro )
R3 O2SDGRDR; C:\Windows\System32\DRIVERS\o2sdg.sys [41504 2009-05-07] (O2Micro )
R3 OEM13Vfx; C:\Windows\System32\DRIVERS\OEM13Vfx.sys [7424 2007-03-05] (EyePower Games Pte. Ltd.)
R3 OEM13Vid; C:\Windows\System32\DRIVERS\OEM13Vid.sys [235840 2008-05-28] (Creative Technology Ltd.)
S3 SRTSP; C:\Windows\System32\Drivers\N360\1506000.020\SRTSP.SYS [664792 2014-08-25] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360\1506000.020\SRTSPX.SYS [32984 2014-08-25] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360\1506000.020\SYMDS.SYS [367704 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360\1506000.020\SYMEFA.SYS [936152 2014-08-25] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [142936 2014-10-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360\1506000.020\Ironx86.SYS [209624 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360\1506000.020\SYMNETS.SYS [447704 2014-08-25] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-12 16:46 - 2015-01-12 16:48 - 00022417 _____ () C:\Users\annie\Desktop\FRST.txt
2015-01-12 16:46 - 2015-01-12 16:46 - 00000000 ____D () C:\FRST
2015-01-12 16:45 - 2015-01-12 16:39 - 01115648 _____ (Farbar) C:\Users\annie\Desktop\FRST.exe
2015-01-12 16:22 - 2015-01-12 16:22 - 00000000 ____D () C:\Users\annie\Desktop\MP3
2014-12-17 20:02 - 2014-12-12 22:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-15 03:22 - 2014-12-15 03:22 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-15 03:07 - 2014-07-06 20:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-12-15 03:07 - 2014-07-06 20:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-12-15 03:07 - 2014-07-06 20:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-12-15 03:06 - 2014-10-17 20:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-15 03:06 - 2014-07-06 20:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-12-14 15:48 - 2014-11-26 20:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-14 15:48 - 2014-11-21 21:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-14 15:48 - 2014-11-21 21:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-14 15:48 - 2014-11-21 21:20 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-14 15:48 - 2014-11-21 21:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-14 15:48 - 2014-11-21 21:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-14 15:48 - 2014-11-21 21:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-14 15:48 - 2014-11-21 21:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-14 15:48 - 2014-11-21 21:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-14 15:48 - 2014-11-21 20:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-14 15:48 - 2014-11-21 20:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-14 15:48 - 2014-11-21 20:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-14 15:48 - 2014-11-21 20:55 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-14 15:48 - 2014-11-21 20:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-14 15:48 - 2014-11-21 20:48 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-14 15:48 - 2014-11-21 20:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-14 15:48 - 2014-11-21 20:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-14 15:48 - 2014-11-21 20:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-14 15:48 - 2014-11-21 20:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-14 15:48 - 2014-11-21 20:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-14 15:48 - 2014-11-21 20:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-14 15:48 - 2014-11-21 20:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-14 15:48 - 2014-11-21 20:23 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-14 15:48 - 2014-11-21 20:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-14 15:48 - 2014-11-21 20:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-14 15:48 - 2014-11-21 20:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-14 15:48 - 2014-11-21 20:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-14 15:48 - 2014-11-21 19:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-14 15:48 - 2014-11-21 19:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-14 15:47 - 2014-12-03 23:38 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-14 15:47 - 2014-12-03 23:38 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-14 15:47 - 2014-12-03 23:38 - 00337920 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-14 15:47 - 2014-12-03 23:38 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-14 15:47 - 2014-12-03 23:38 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-14 15:47 - 2014-12-03 23:38 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-14 15:47 - 2014-12-03 23:34 - 00873984 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-14 15:47 - 2014-12-01 18:28 - 01160872 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-14 15:47 - 2014-11-10 21:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-14 15:47 - 2014-11-10 20:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-14 15:47 - 2014-11-07 21:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-14 15:47 - 2014-10-29 20:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-14 15:47 - 2014-10-02 20:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-14 15:47 - 2014-10-02 20:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-14 15:47 - 2014-10-02 20:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-14 15:47 - 2014-10-02 20:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-14 15:47 - 2014-10-02 20:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-12 16:52 - 2012-05-10 17:16 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-12 16:46 - 2009-07-13 23:55 - 01839444 _____ () C:\Windows\WindowsUpdate.log
2015-01-12 16:42 - 2010-05-31 22:04 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-12 16:42 - 2009-07-13 23:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-12 16:42 - 2009-07-13 23:39 - 00154313 _____ () C:\Windows\setupact.log
2015-01-12 16:20 - 2009-12-03 22:55 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-12 16:16 - 2010-05-31 22:04 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-12 12:21 - 2009-07-13 23:34 - 00025424 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-12 12:21 - 2009-07-13 23:34 - 00025424 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-11 17:27 - 2012-06-26 16:33 - 00000000 ____D () C:\Program Files\Steam
2015-01-10 23:34 - 2014-10-26 11:41 - 00000000 ____D () C:\Users\annie\AppData\Local\CrashDumps
2015-01-10 10:40 - 2012-02-04 17:02 - 00000856 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3287317925-2951633530-1351593121-1000Core.job
2015-01-06 04:36 - 2010-02-26 17:07 - 00249488 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-12-21 00:10 - 2014-02-13 21:25 - 00000000 ____D () C:\Users\annie\Desktop\KSP MODS
2014-12-15 12:20 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\rescache
2014-12-15 03:22 - 2014-05-07 00:50 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-15 03:22 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\AppCompat
2014-12-15 03:06 - 2013-08-14 10:41 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-15 03:01 - 2011-02-08 16:31 - 109818608 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-14 16:30 - 2010-05-31 22:08 - 00002050 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

Files to move or delete:
====================
C:\Users\annie\blender-2.62-release-windows32.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-04 18:00

==================== End Of Log ============================
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm

Re: poweliks plus others???

Unread postby flip665 » January 17th, 2015, 5:11 pm

here is the frst addition log. i also have a short one from fixpoweliks32, and an esetpowelikscleaner.exe that didnt seem to work but i dont understand the notepad log anyway so who knows...


Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-01-2015 02
Ran by annie at 2015-01-12 16:59:27
Running from C:\Users\annie\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton 360 (Disabled - Out of date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton 360 (Disabled - Out of date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM\...\7-Zip 9.20) (Version: - )
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Reader 8.1.0 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A81000000003}) (Version: 8.1.0 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ask Toolbar Updater (HKU\.DEFAULT\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.1.22229 - Ask.com) <==== ATTENTION
Bing Bar (HKLM\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Cisco Connect (HKLM\...\Cisco Connect) (Version: 1.2.10260.0 - Cisco Consumer Products LLC)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.0.1) (Version: 5.0.0.1 - Coupons.com Incorporated)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery Manager (HKLM\...\{731B0E4D-F4C7-450C-95B0-E1A3176B1C75}) (Version: 1.1.0 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{3138EAD3-700B-4A10-B617-B3F8096EE30D}) (Version: 1.0.0 - Dell Inc)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.4.102.104 - ALPS ELECTRIC CO., LTD.)
Dell V310-V510 Series (HKLM\...\Dell V310-V510 Series) (Version: - Dell, Inc.)
Dell Wireless WLAN Card Utility (HKLM\...\Dell Wireless WLAN Card Utility) (Version: 5.30.21.0 - Dell Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM\...\{0C5C1177-94C5-3EFB-A8BE-3F6AF1AF887F}) (Version: 5.38.6.0 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java(TM) 6 Update 38 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216038FF}) (Version: 6.0.380 - Oracle)
Junk Mail filter update (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Kerbal Space Program (HKLM\...\Steam App 220200) (Version: - Squad)
Laptop Integrated Webcam Driver (1.01.01.0529) (HKLM\...\Creative OEM013) (Version: - )
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-3287317925-2951633530-1351593121-1000\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Norton 360 (HKLM\...\N360) (Version: 21.6.0.32 - Symantec Corporation)
Norton Internet Security (Version: 16.7.0.30 - Symantec Corporation) Hidden
Origin (HKLM\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.)
PowerDVD DX (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 8.3.5424 - CyberLink Corp.)
Roxio Creator DE 10.3 (HKLM\...\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}) (Version: 10.3 - Roxio)
Satsuki Decoder Pack (HKLM\...\Satsuki Decoder Pack) (Version: 5101 - Satsuki Yatoshi'S Softs)
Silent Hunter Wolves of the Pacific (HKLM\...\{0D005F09-A5F4-473B-A901-5735C6AF5628}) (Version: 1.05.0000 - Ubisoft)
SPORE™ (HKLM\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.05.0001 - Electronic Arts)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab CYRI (HKLM\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\annie\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.21.135\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{095A2EEC-F7FE-42E8-96FB-C20E53081908}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.21.99\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.25.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> "C:\Users\annie\AppData\Local\Google\Update\1.3.25.5\GoogleUpdateOnDemand.exe" No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> "C:\Users\annie\AppData\Local\Google\Update\1.3.25.5\GoogleUpdateOnDemand.exe" No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.23.9\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{39125640-8D80-11DC-A2FE-C5C455D89593}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Google Talk Plugin\googletalkax.dll (Google)
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> "C:\Users\annie\AppData\Local\Google\Update\1.3.25.5\GoogleUpdateOnDemand.exe" No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.21.145\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.21.123\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.21.153\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{7B37E4E2-C62F-4914-9620-8FB5062718CC}\localserver32 -> C:\Users\annie\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.24.15\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{91EFB276-CEFE-48EC-BB3A-57795A7B4008}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.21.149\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\annie\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.22.3\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{AB807329-7324-431B-8B36-DBD581F56E0B}\localserver32 -> C:\Users\annie\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32 -> rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 247 more characters). <==== Poweliks?
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{AB9F4455-E591-4132-A386-0B91EAEDB96C}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Google Talk Plugin\o1dax.dll (Google)
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\annie\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.21.115\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> "C:\Users\annie\AppData\Local\Google\Update\1.3.25.5\GoogleUpdateOnDemand.exe" No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.25.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.22.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\annie\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\annie\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\FileSyncApi.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.21.111\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-3287317925-2951633530-1351593121-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\annie\AppData\Local\Google\Update\1.3.24.7\psuser.dll No File

==================== Restore Points =========================

02-12-2014 23:05:06 Windows Update
06-12-2014 12:45:43 Windows Update
14-12-2014 15:47:32 Windows Update
15-12-2014 03:00:16 Windows Update
20-12-2014 01:14:24 Windows Update
20-12-2014 03:00:12 Windows Update
25-12-2014 00:41:16 Windows Update
03-01-2015 12:10:38 Windows Update
07-01-2015 16:26:48 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:04 - 2009-06-10 16:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {25725566-F5C1-494C-99FF-98CF36EB8447} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {26CECAD2-F8BF-497F-9647-5585650C5BDF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09] (Adobe Systems Incorporated)
Task: {5667BF68-E85E-426A-8C6E-67DD0CF33EF4} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton 360\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {637331D8-3B76-4102-8E12-3A0D881FF024} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3287317925-2951633530-1351593121-1000Core => C:\Users\annie\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.)
Task: {79FCFB8E-B9E3-470D-9878-577B13E518EF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {873365B5-A986-40F3-BF93-125583480998} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {8CDAE130-4FBE-46A6-900B-715A9958CF97} - System32\Tasks\DC5762L1\Administrator - Start WLAN Tray Applet => C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE [2009-07-16] (Dell Inc.)
Task: {A36B112F-6063-45A3-99B8-6AF9B31BB69D} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {B9347A69-4746-4659-942A-96AFB6371A81} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {C39AADA7-4308-4713-A2B8-F3594B033303} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3287317925-2951633530-1351593121-1000UA => C:\Users\annie\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3287317925-2951633530-1351593121-1000Core.job => C:\Users\annie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3287317925-2951633530-1351593121-1000UA.job => C:\Users\annie\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2009-12-03 22:52 - 2009-07-16 23:57 - 00026112 _____ () C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
2009-12-03 22:52 - 2009-07-16 23:57 - 00055808 _____ () C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlrmt.dll
2010-05-20 12:47 - 2009-06-19 07:58 - 00157696 _____ () C:\Windows\system32\spool\PRTPROCS\W32X86\dleadrpp.dll
2014-02-12 19:58 - 2014-02-12 19:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 19:58 - 2014-02-12 19:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2007-01-13 02:01 - 2007-01-13 02:01 - 00397312 ____R () C:\Program Files\Adobe\Reader 8.0\Reader\cryptocme2.dll
2007-01-13 02:01 - 2007-01-13 02:01 - 00475136 ____R () C:\Program Files\Adobe\Reader 8.0\Reader\ccme_base.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sndappv2 => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

========================= Accounts: ==========================

Administrator (S-1-5-21-3287317925-2951633530-1351593121-500 - Administrator - Disabled)
annie (S-1-5-21-3287317925-2951633530-1351593121-1000 - Administrator - Enabled) => C:\Users\annie
Guest (S-1-5-21-3287317925-2951633530-1351593121-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/11/2015 05:10:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program KSP.exe version 4.5.5.37569 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 17e8

Start Time: 01d02de16b09b2a2

Termination Time: 0

Application Path: C:\Program Files\Steam\steamapps\common\Kerbal Space Program\KSP.exe

Report Id: 0b9762c1-99de-11e4-bf8c-e7f010c61626

Error: (01/11/2015 00:16:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x546fddcc
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000a500
Faulting process id: 0x450
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (01/11/2015 05:21:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x546fddcc
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00001000
Faulting process id: 0x88b0
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (01/11/2015 05:05:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x546fddcc
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000a500
Faulting process id: 0x6900
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (01/11/2015 04:46:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x546fddcc
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0a700000
Faulting process id: 0x11ad4
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (01/11/2015 04:45:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x546fddcc
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0a700000
Faulting process id: 0x144ac
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (01/11/2015 04:42:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x546fddcc
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0x8e58
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (01/11/2015 04:42:00 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17496 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 4f00

Start Time: 01d02d7f4e6b6039

Termination Time: 468

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (01/11/2015 04:16:15 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x546fddcc
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0x7178
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (01/10/2015 11:34:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17496, time stamp: 0x546ff2f9
Exception code: 0xc00000fd
Fault offset: 0x00120dbf
Faulting process id: 0xa2bc
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3


System errors:
=============
Error: (01/12/2015 04:46:21 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/12/2015 04:42:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The dleaCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (01/12/2015 04:42:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the dleaCATSCustConnectService service to connect.

Error: (01/12/2015 04:34:10 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/12/2015 04:33:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The dleaCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (01/12/2015 04:33:07 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the dleaCATSCustConnectService service to connect.

Error: (01/12/2015 00:33:47 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/12/2015 00:13:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The dleaCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (01/12/2015 00:13:19 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the dleaCATSCustConnectService service to connect.

Error: (01/11/2015 05:14:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The dleaCATSCustConnectService service failed to start due to the following error:
%%1053


Microsoft Office Sessions:
=========================
Error: (01/11/2015 05:10:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: KSP.exe4.5.5.3756917e801d02de16b09b2a20C:\Program Files\Steam\steamapps\common\Kerbal Space Program\KSP.exe0b9762c1-99de-11e4-bf8c-e7f010c61626

Error: (01/11/2015 00:16:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.17496546fddccunknown0.0.0.000000000c00000050000a50045001d02dbdb140a616C:\Program Files\Internet Explorer\iexplore.exeunknown8db8fb0d-99b5-11e4-bf8b-e7f010c61626

Error: (01/11/2015 05:21:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.17496546fddccunknown0.0.0.000000000c00000050000100088b001d02d881c7a8b03C:\Program Files\Internet Explorer\iexplore.exeunknown9b4d1017-997b-11e4-b3ec-e6985511412e

Error: (01/11/2015 05:05:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.17496546fddccunknown0.0.0.000000000c00000050000a500690001d02d85d7150b43C:\Program Files\Internet Explorer\iexplore.exeunknown6492b723-9979-11e4-b3ec-e6985511412e

Error: (01/11/2015 04:46:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.17496546fddccunknown0.0.0.000000000c00000050a70000011ad401d02d83484f7a59C:\Program Files\Internet Explorer\iexplore.exeunknownaa396bbc-9976-11e4-b3ec-e6985511412e

Error: (01/11/2015 04:45:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.17496546fddccunknown0.0.0.000000000c00000050a700000144ac01d02d82fc573500C:\Program Files\Internet Explorer\iexplore.exeunknown81f55162-9976-11e4-b3ec-e6985511412e

Error: (01/11/2015 04:42:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.17496546fddccunknown0.0.0.000000000c0000005000000008e5801d02d7f45f2fb55C:\Program Files\Internet Explorer\iexplore.exeunknown34eb4dca-9976-11e4-b3ec-e6985511412e

Error: (01/11/2015 04:42:00 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.174964f0001d02d7f4e6b6039468C:\Program Files\Internet Explorer\iexplore.exe

Error: (01/11/2015 04:16:15 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.17496546fddccunknown0.0.0.000000000c000000500000000717801d02d7e6360830aC:\Program Files\Internet Explorer\iexplore.exeunknown7da9b426-9972-11e4-b3ec-e6985511412e

Error: (01/10/2015 11:34:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.174964a5bc6b7MSHTML.dll11.0.9600.17496546ff2f9c00000fd00120dbfa2bc01d02d57d3394fbeC:\Program Files\Internet Explorer\iexplore.exeC:\Windows\system32\MSHTML.dll268bf843-994b-11e4-b3ec-e6985511412e


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T6670 @ 2.20GHz
Percentage of memory in use: 22%
Total physical RAM: 3032.96 MB
Available physical RAM: 2347.68 MB
Total Pagefile: 6117.53 MB
Available Pagefile: 4787.23 MB
Total Virtual: 2047.88 MB
Available Virtual: 1885.27 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:218.2 GB) (Free:98.05 GB) NTFS
Drive e: () (Removable) (Total:0.95 GB) (Free:0.78 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 232.9 GB) (Disk ID: F638964D)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=218.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 968.8 MB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm

Re: poweliks plus others???

Unread postby wannabeageek » January 17th, 2015, 9:29 pm

Hi flip665,

Go ahead and post the logs from fixpoweliks32 and esetpowelikscleaner.
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: poweliks plus others???

Unread postby flip665 » January 17th, 2015, 11:13 pm

here is the fixpoweliks32 log:

Possible infected key found: \REGISTRY\USER\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32\a
Attempting to remediate Trojan.Poweliks
Process dllhost.exe has been terminated.
Process dllhost.exe has been terminated.
Process dllhost.exe has been terminated.
Trojan.Poweliks processes successfully stopped
The following registry value has been deleted:
\\REGISTRY\USER\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32\"a"
The following registry value has been deleted:
\\REGISTRY\USER\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32\""
Trojan.Poweliks keys successfully removed
Trojan.Poweliks has been successfully remediated


and here is the first eset log that was posted to my desktop... though it didnt seem to run as advertised (people said it would take 10-20 minutes and this log was posted instantly) as such i believed i was doing something wrong and tried to run it again, i have several of these logs that all posted in the same amount of time and were run AFTER the fixpowliks program which said it was remedied. and all state at the end that poweliks was detected... anyway, heres the first log:


[2015.01.13 11:31:01.074] - Begin
[2015.01.13 11:31:01.074] -
[2015.01.13 11:31:01.075] - ....................................
[2015.01.13 11:31:01.075] - ..::::::::::::::::::....................
[2015.01.13 11:31:01.077] - .::EEEEEE:::SSSSSS::..EEEEEE..TTTTTTTT.. Win32/Poweliks
[2015.01.13 11:31:01.078] - .::EE::::EE:SS:::::::.EE....EE....TT...... Version: 1.0.0.1
[2015.01.13 11:31:01.081] - .::EEEEEEEE::SSSSSS::.EEEEEEEE....TT...... Built: Oct 15 2014
[2015.01.13 11:31:01.082] - .::EE:::::::::::::SS:.EE..........TT......
[2015.01.13 11:31:01.083] - .::EEEEEE:::SSSSSS::..EEEEEE.....TT..... Copyright (c) ESET, spol. s r.o.
[2015.01.13 11:31:01.084] - ..::::::::::::::::::.................... 1992-2013. All rights reserved.
[2015.01.13 11:31:01.084] - ....................................
[2015.01.13 11:31:01.084] -
[2015.01.13 11:31:01.084] - --------------------------------------------------------------------------------
[2015.01.13 11:31:01.084] -
[2015.01.13 11:31:01.085] - INFO: OS: 6.1.7601 SP1
[2015.01.13 11:31:01.085] - INFO: Product Type: Workstation
[2015.01.13 11:31:01.085] - INFO: WoW64: False
[2015.01.13 11:31:01.086] - INFO: Machine guid: A2F797AD-8A30-4886-8DF8-86B20417033E
[2015.01.13 11:31:01.086] -
[2015.01.13 11:31:01.088] - INFO: Scanning for system infection...
[2015.01.13 11:31:01.088] - --------------------------------------------------------------------------------
[2015.01.13 11:31:01.088] -
[2015.01.13 11:31:01.088] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]...
[2015.01.13 11:31:01.089] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]...
[2015.01.13 11:31:01.090] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2015.01.13 11:31:01.090] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2015.01.13 11:31:01.090] - INFO: Processing classes...
[2015.01.13 11:31:01.092] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}]
[2015.01.13 11:31:01.092] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}]
[2015.01.13 11:31:01.092] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{08FB66B9-2D2D-4B35-A747-D5D9E9F472E2}]
[2015.01.13 11:31:01.092] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{095A2EEC-F7FE-42E8-96FB-C20E53081908}]
[2015.01.13 11:31:01.092] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}]
[2015.01.13 11:31:01.092] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{0F9285DF-3511-4FE6-A587-CD8F61A121CA}]
[2015.01.13 11:31:01.092] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{1793FE32-120E-4D33-8BE9-19EF4AD165F6}]
[2015.01.13 11:31:01.092] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{21902B91-1E80-4282-AFDE-AB014CB4ED5A}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{220DFF67-87CE-4D26-8020-27E0B554A880}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{3063357E-821C-4A7D-B49A-F61EA772BF9B}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{39125640-8D80-11DC-A2FE-C5C455D89593}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{699A646B-C61E-4C36-A253-620E4EBD294C}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{71FDCAEA-B6F2-4B6C-A18C-6C85F0E4662F}]
[2015.01.13 11:31:01.093] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{7B37E4E2-C62F-4914-9620-8FB5062718CC}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{7C2C4F1F-5E0E-2979-3868-0B5B1A4AE5B5}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{91EFB276-CEFE-48EC-BB3A-57795A7B4008}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{A480C024-04D0-4F28-8CF0-ADACE2BD839C}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB807329-7324-431B-8B36-DBD581F56E0B}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2015.01.13 11:31:01.094] - WARNING: Found suspicous classid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB9F4455-E591-4132-A386-0B91EAEDB96C}]
[2015.01.13 11:31:01.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{B41AD4BE-25BA-4A51-A0BB-FC1584E316F1}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{C9E37353-EC76-4A58-B575-BBA8B4BD06D1}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.095] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.096] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.097] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.098] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.099] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.100] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.101] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.102] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.103] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.104] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.105] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.106] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.107] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}]

character limit exceded, continue to next post
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm

Re: poweliks plus others???

Unread postby flip665 » January 17th, 2015, 11:15 pm

[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.108] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.110] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.111] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.112] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.113] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.114] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.115] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.116] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.117] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.118] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.119] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.120] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.121] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.122] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.123] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.124] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CD221623-4F9A-4FA5-A9EE-A77EC8F0E7BD}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{DBFA3C03-20D5-4EE5-8C06-B8C4C2B71783}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}]
[2015.01.13 11:31:01.126] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{FD10EA6A-0D14-4AA2-A376-0C8D51CA8779}]
[2015.01.13 11:31:01.127] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}]
[2015.01.13 11:31:01.128] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}]
[2015.01.13 11:31:01.128] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}]
[2015.01.13 11:31:01.128] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{08FB66B9-2D2D-4B35-A747-D5D9E9F472E2}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{095A2EEC-F7FE-42E8-96FB-C20E53081908}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{0F9285DF-3511-4FE6-A587-CD8F61A121CA}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{1793FE32-120E-4D33-8BE9-19EF4AD165F6}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{21902B91-1E80-4282-AFDE-AB014CB4ED5A}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{220DFF67-87CE-4D26-8020-27E0B554A880}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{3063357E-821C-4A7D-B49A-F61EA772BF9B}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{39125640-8D80-11DC-A2FE-C5C455D89593}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}]
[2015.01.13 11:31:01.129] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{699A646B-C61E-4C36-A253-620E4EBD294C}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{71FDCAEA-B6F2-4B6C-A18C-6C85F0E4662F}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{7B37E4E2-C62F-4914-9620-8FB5062718CC}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{7C2C4F1F-5E0E-2979-3868-0B5B1A4AE5B5}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{91EFB276-CEFE-48EC-BB3A-57795A7B4008}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{A480C024-04D0-4F28-8CF0-ADACE2BD839C}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB807329-7324-431B-8B36-DBD581F56E0B}]
[2015.01.13 11:31:01.130] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2015.01.13 11:31:01.130] - WARNING: Found suspicous classid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{AB9F4455-E591-4132-A386-0B91EAEDB96C}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{B41AD4BE-25BA-4A51-A0BB-FC1584E316F1}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{C9E37353-EC76-4A58-B575-BBA8B4BD06D1}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.131] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.132] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.133] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.134] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.135] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.136] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.137] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.138] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.139] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.140] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.141] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.142] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.143] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.144] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.145] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}]


character limit exceded, continue to next post
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm

Re: poweliks plus others???

Unread postby flip665 » January 17th, 2015, 11:16 pm

[2015.01.13 11:31:01.146] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.147] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.148] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.149] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.150] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.151] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.152] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.153] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.154] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.155] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.156] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.157] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.158] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.159] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{CD221623-4F9A-4FA5-A9EE-A77EC8F0E7BD}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{DBFA3C03-20D5-4EE5-8C06-B8C4C2B71783}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}]
[2015.01.13 11:31:01.160] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
[2015.01.13 11:31:01.161] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}]
[2015.01.13 11:31:01.161] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}]
[2015.01.13 11:31:01.161] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{FD10EA6A-0D14-4AA2-A376-0C8D51CA8779}]
[2015.01.13 11:31:01.161] - INFO: Processing clsid [\Registry\User\S-1-5-21-3287317925-2951633530-1351593121-1000\SOFTWARE\Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}]
[2015.01.13 11:31:01.161] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2015.01.13 11:31:01.161] - INFO: Processing value [] = [C:\Windows\system32\wbem\wmiprvse.exe]
[2015.01.13 11:31:01.161] - INFO: Processing value [] = [C:\Windows\system32\wbem\wmiprvse.exe]
[2015.01.13 11:31:01.161] - INFO: Processing invalid values in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2015.01.13 11:31:01.161] - INFO: Processing value [] = [C:\Windows\system32\wbem\wmiprvse.exe]
[2015.01.13 11:31:01.161] - INFO: Processing value [ServerExecutable] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2015.01.13 11:31:01.161] - INFO: Processing value [] = [C:\Windows\system32\wbem\wmiprvse.exe]
[2015.01.13 11:31:01.162] - INFO: Processing value [ServerExecutable] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2015.01.13 11:31:01.162] - INFO: Processing invalid subkeys in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2015.01.13 11:31:01.162] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]...
[2015.01.13 11:31:01.162] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2015.01.13 11:31:01.162] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2015.01.13 11:31:01.162] - INFO: Win32/Poweliks found



any feedback as to what your seeing would be appreciated... thanks for the time investment
-flip
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm

Re: poweliks plus others???

Unread postby wannabeageek » January 18th, 2015, 6:23 pm

Hi flip,

After reviewing the logs I am going to reference you to my first post:
http://www.malwareremoval.com/forum/viewtopic.php?f=11&t=63431#p639974
With emphisis on this topic: Remote Access Infections ... (why you should repave)

flip665 wrote:....which raises the questions -whats the point of eset tool or poweliks fixer that i ran? and -how does one even know that someone has it, or fix it, if its fileless?.?.

It is "file-less" in the sense of a normal infection. A "normal infection is one that affects files on the hard drive or the files for the boot process when the computer starts. What makes this different is the file that is actually infected is the registry on your computer.
Again, this is a very new type of infection and the damage done to your computers registry is unknown since according to the report of the ESET cleaner stating your computer is still infected.

flip665 wrote:any feedback as to what your seeing would be appreciated... thanks for the time investment
Again, I think you should format and reinstall windows. Please re-read the entire topic on Remote Access Infections and why you should repave.
Let me know after reading the topic, carefully, what you would like to do.

wbg
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: poweliks plus others???

Unread postby flip665 » January 18th, 2015, 9:20 pm

thanks wbg for the feedback... as i cant say i'm happy with the result i hope you'll bear with me as i know this isnt your fault.

I have a few questions in no particular order that I hope you'll take the time to look at.

1. why have i run by so many forum posts about poweliks that seem to be resolved with a fixer program?

2. what is the difference to my situation? or is that what you mean from above "this is a new type of infection" ...

3. is there any answer in the logs as to why my previous helper would state "poweliks + others" in his daignosis? i still havent heard one way or the other on that.

4. is it possible to reformat an OEM computer back to factory specs with no back up disks... ie, this is my gf's laptop and im not aware that she has anything backup related. that being said, all that is on here that is of any value to me is pictures and a few txt documents. given the low probability of reinfection from these per the links you posted, i wouldnt necesarily be opposed to repaving. and with that being said is it possible to scan these with any sort of certainty to further help rule out reinfection...? so how would you repave without any software??

5. would it be any help at all to delete/uninstall fixer programs and run the scans again? i can help but think of how likely it is that i made a mistake running them (possibly on top of each other) or that them being 5+ days old that they're wrong some how...



i feel like i had more questions than that but thats all i can think of at the moment, with one final caveat. i dont mean to disrespect you but would it be out of the realm of possibility to get a second opinion with a new set of logs? again, i mean no disrespect. also i deeply appreciate your concern for the safety and security of my machine... i guess that kind of falls back to question 5 sort of. it doesnt matter either way, as it sits now the only real options i have are reformat and reload unbacked up files and take a risk, or try and fix it and take a risk... a 100%clean slate is out of the question it seems. (depending on the outcome of #4 above)

i guess thatll do it for now, if i think of anything else ill get back to you...

again thanks wbg, for your time investment and your help.
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm

Re: poweliks plus others???

Unread postby flip665 » January 18th, 2015, 9:56 pm

sorryforthebump...
im aware its not a favorable practice, but i couldnt figure out how to edit the previous post

what is the multiple dllhost.exe surrogates i was having indicative of? i havent had them since running fixpoweliks32 tool. also the eset log posted aboave was run BEFORE fixpowliks32 tool. though i dont think it matters as the logs posted after (remember i said i tried several times believing it wasnt working) seem to say the same thing at the end along with multiple warning lines in the log about suspicious id's or whatever...

again thanks wbg.
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm

Re: poweliks plus others???

Unread postby wannabeageek » January 18th, 2015, 10:04 pm

Lets take care of the first set of questions before addressing anymore.

I am not sure that you read the entire topic below because it does answer your questions and tells you how to respond.
I am not going to repost the topic here as it would be redundant.

With emphisis on this topic: Remote Access Infections ... (why you should repave) <<< This Topic



Are you wanting to try and "CLEAN" the computer as far as possible as stated here: We can assist with its removal "This is part of that above topic link."

Is this what you are asking? To try and clean the computer?
.....to get a second opinion with a new set of logs?
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: poweliks plus others???

Unread postby flip665 » January 18th, 2015, 11:39 pm

ok, well just go with the first questions for now and ill stick with your recent post...

i did read the post and do understand what remote access infections are... they are dangerous, and basically nothing that has to do with this computer is safe... someone could be watching, controlling, stealing my every move or input. using my computer to do harm to myself and others ect. ect.

and i should "repave" because thats the only way to ensure that the code that enables this to happen is gone. and since it can esentially survive anywhere, theres no known way to be 100% sure that it is 100% gone if you clean rather than repave...

as for the second quote and question you had, the answer is really a toss up. on one hand i really want a clean computer so i agree with you on the repave but on the other hand i deeply do not wish to lose the probably thousands of un-backed up pictures of my children growing up.
so i guess the answer to your question "is this what your asking? to try and clean the computer?" largely depends on the answer to question 4(see edit below) .

i appologize for being anal about this, im just trying to make the right decisions and not get in over my head. and right now either option makes me nervous.

edit and clarification of question 4 of my last post as pertains to "repaving":

-this computer to my knowledge is a one owner gift laptop thats getting old and im not aware of any backup paraphenalia... no disks, no save points, no flash drives etc.

-all i have that fits anything in that catagory is an older new to me free desktop and a few sd cards.

-the only files that im concerned about are pictures. but since its technically possible (as per one of the links you posted) that the poweliks resides here or can reenact itself from here, i feel that even if we repave im taking a risk on reinfection anyway as i will be forced to use possibly corrupted files reinstalling them as im sure they dont exist anywhere else at the moment

-so, knowing all that, does repaving still represent the best possible course of action? if so, can it be done with the resources i have right now? (i.e. im broke till april) and if so, can the concerning files (pics etc.) be somehow scanned cleaned or screened to be deemed as at least a very unlikely source of reinfection prior to reinstalling? if the answer is yes to all that and you can help with or point me in the direction of reliable noob instruction on how, then absolutely ill take the repaving option. if keeping the photos nullifies completely the point of repaving then i side with the seemingly simpler method of cleaning. especially if its just finding and rewriting registry keys and then systematically dealing with everything else it brought along. i dont mean to understate the dificulty of any of it, because it all boils down to: i dont know how to do either, in all your professional knowlege, what is the best way.

thanks for your patience wbg.
-flip
flip665
Regular Member
 
Posts: 53
Joined: January 16th, 2015, 3:54 pm
Advertisement
Register to Remove

Next

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 201 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware