Log je nějaký krátký, snad je to ono?????
SystemLook 30.07.11 by jpshortstuff
Log created at 09:24 on 26/12/2015 by pc
Administrator - Elevation successful
========== filefind ==========
Searching for "BAPIDRV.sys"
Kontrola logu HJT Vyřešeno
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu HJT
Je to ono.
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
Stáhni si OTC
na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.
Co problémy?
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
Stáhni si OTC
na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.
Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu HJT
Děkuji, vše provedeno a zatím se to zdá dobré, ale právě jsem to dodělal. Tak uvidím.... Jěště jsem zkusil pro jistotu MBAM a je v něm zase těch 8 nákaz.... 

- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu HJT
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu HJT
Díky Jaro, tady jeto.....
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-12-2015
Ran by pc (administrator) on ELIŠKA (27-12-2015 09:20:53)
Running from C:\Users\pc\Desktop
Loaded Profiles: pc (Available Profiles: pc)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac7302\Monitor.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Broadcom Corporation) C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Gemius) C:\Program Files\NetSoftware\NetSoftware.exe
(PS Media s.r.o.) C:\Windows\System32\ssins.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3855272 2015-11-20] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14688512 2015-11-10] (Realtek Semiconductor)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [323584 2007-12-10] (PixArt Imaging Incorporation)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [NetSoftware] => C:\Program Files\NetSoftware\Starter.exe [223216 2015-12-21] (Gemius)
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 172.20.0.1 188.116.64.5
Tcpip\..\Interfaces\{39C2584A-1543-461E-AA43-BACBF2239248}: [DhcpNameServer] 172.20.0.1 188.116.64.5
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-860103369-4256068919-2072106398-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-21] (Oracle Corporation)
BHO: Internet Panel -> {CE7C3CF0-4B15-11D1-ABED-709549C10000} -> C:\Program Files\NetSoftware\IEHelper.dll [2015-12-24] (Gemius)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-21] (Oracle Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
FireFox:
========
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\cri16llo.default
FF NewTab: about:newtab
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-13] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-21] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\cri16llo.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-26]
FF HKU\S-1-5-21-860103369-4256068919-2072106398-1000\...\Firefox\Extensions: [gemgecko@gemius.com] - C:\Program Files\NetSoftware\gemgecko_ext
FF Extension: Netpanel - C:\Program Files\NetSoftware\gemgecko_ext [2015-12-21]
Chrome:
=======
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-08]
CHR Extension: (Google Docs) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-08]
CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-08]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-08]
CHR Extension: (Google Search) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-08]
CHR Extension: (Google Sheets) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-08]
CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-08]
CHR HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kegdldmohomdaelnepdpbkdhfemobdgl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
S3 AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [615584 2015-11-20] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3857272 2015-11-20] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [862632 2015-11-12] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [579776 2015-11-20] (AVG Technologies CZ, s.r.o.)
R2 BrcmMgmtAgent; C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe [154624 2012-08-02] (Broadcom Corporation) [File not signed]
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [829696 2014-07-17] (Broadcom Corporation.)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [45568 2011-04-13] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [55808 2011-04-13] (Hewlett-Packard) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [266496 2015-11-10] (Realtek Semiconductor)
R2 ssinstall; C:\Windows\System32\ssins.exe [2324216 2014-12-25] (PS Media s.r.o.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [11944 2014-11-15] (Advanced Micro Devices Inc.)
R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [76952 2015-11-10] (Alcor Micro, Corp.)
S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus.sys [15744 2014-10-09] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [23680 2014-10-09] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [28416 2014-10-09] (LG Electronics Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [149936 2015-11-06] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [255920 2015-11-06] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [231344 2015-08-20] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [308656 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [193968 2015-11-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [36784 2015-08-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [231856 2015-10-08] (AVG Technologies CZ, s.r.o.)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [176856 2013-10-02] (Broadcom Corporation.)
R3 btwampfl; C:\Windows\system32\drivers\btwampfl.sys [508632 2014-03-25] (Broadcom Corporation.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-11-10] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [461824 2009-04-28] (PixArt Imaging Inc.)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624 2014-06-04] (IObit)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S1 BAPIDRV; system32\DRIVERS\BAPIDRV.sys [X]
S3 btaudio; system32\drivers\btaudio.sys [X]
S3 BTDriver; system32\DRIVERS\btport.sys [X]
S3 BTWDNDIS; system32\DRIVERS\btwdndis.sys [X]
S3 btwhid; system32\DRIVERS\btwhid.sys [X]
S3 BTWUSB; System32\Drivers\btwusb.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-12-27 09:20 - 2015-12-27 09:21 - 00012613 _____ C:\Users\pc\Desktop\FRST.txt
2015-12-27 09:20 - 2015-12-27 09:20 - 00000000 ____D C:\FRST
2015-12-27 09:19 - 2015-12-27 09:19 - 01721856 _____ (Farbar) C:\Users\pc\Desktop\FRST.exe
2015-12-27 06:33 - 2009-08-24 21:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2015-12-27 05:51 - 2015-12-27 05:52 - 90861608 _____ (Ashampoo GmbH & Co. KG ) C:\Users\pc\Desktop\ashampoo_burning_studio_16_e16.0.4_sm.exe
2015-12-26 23:09 - 2015-12-27 05:34 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-12-24 18:38 - 2015-12-24 18:01 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-12-24 18:01 - 2015-12-24 18:35 - 00000000 ____D C:\zoek_backup
2015-12-24 17:39 - 2015-12-24 17:39 - 01309184 _____ C:\Users\pc\Desktop\zoek.exe
2015-12-24 10:47 - 2015-12-24 10:47 - 00002205 _____ C:\MBAM po smazání.txt
2015-12-24 10:09 - 2015-12-24 10:21 - 00000000 ____D C:\AdwCleaner
2015-12-24 09:49 - 2015-12-24 09:49 - 01743360 _____ C:\Users\pc\Desktop\adwcleaner_5.026.exe
2015-12-24 09:49 - 2015-12-24 09:49 - 00448512 _____ (OldTimer Tools) C:\Users\pc\Desktop\TFC.exe
2015-12-24 08:11 - 2015-12-24 08:11 - 00388608 _____ (Trend Micro Inc.) C:\Users\pc\Desktop\HijackThis.exe
2015-12-15 21:24 - 2015-12-21 22:35 - 00000574 _____ C:\DelFix.txt
2015-12-14 14:00 - 2015-12-14 14:00 - 00000091 _____ C:\Users\pc\Desktop\Nový textový dokument.txt
2015-12-13 15:27 - 2015-12-13 15:27 - 00050688 _____ (Atribune.org) C:\Users\pc\Desktop\ATF-Cleaner.exe
2015-12-09 13:23 - 2015-11-11 21:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-12-09 13:23 - 2015-11-11 19:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-12-09 13:23 - 2015-11-11 19:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-12-09 13:23 - 2015-11-11 16:44 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-12-09 13:23 - 2015-11-10 19:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-12-09 13:23 - 2015-11-10 19:39 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-12-09 13:23 - 2015-11-10 19:39 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-12-09 13:23 - 2015-11-10 18:40 - 02386944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-12-09 13:23 - 2015-11-10 01:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-12-09 13:23 - 2015-11-10 01:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-12-09 13:23 - 2015-11-10 01:06 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-12-09 13:23 - 2015-11-10 01:06 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-12-09 13:23 - 2015-11-10 01:03 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-12-09 13:23 - 2015-11-10 01:03 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-12-09 13:23 - 2015-11-10 01:02 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-12-09 13:23 - 2015-11-10 00:57 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-12-09 13:23 - 2015-11-10 00:50 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-12-09 13:23 - 2015-11-10 00:44 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-12-09 13:23 - 2015-11-10 00:36 - 00687104 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-12-09 13:23 - 2015-11-10 00:36 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-12-09 13:23 - 2015-11-10 00:14 - 01311744 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-12-09 13:23 - 2015-11-10 00:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 02956800 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-12-09 13:22 - 2015-11-20 19:33 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-12-09 13:22 - 2015-11-20 19:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-12-09 13:22 - 2015-11-20 19:33 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-12-09 13:22 - 2015-11-11 17:00 - 12856832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-12-09 13:22 - 2015-11-11 16:44 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-12-09 13:22 - 2015-11-11 16:41 - 20366848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-12-09 13:22 - 2015-11-11 15:57 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-12-09 13:22 - 2015-11-10 01:24 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-12-09 13:22 - 2015-11-10 01:13 - 00496640 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-12-09 13:22 - 2015-11-10 01:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-12-09 13:22 - 2015-11-10 01:12 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-12-09 13:22 - 2015-11-10 01:11 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-12-09 13:22 - 2015-11-10 01:08 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-12-09 13:22 - 2015-11-10 01:04 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-12-09 13:22 - 2015-11-10 01:02 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-12-09 13:22 - 2015-11-10 00:47 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-12-09 13:22 - 2015-11-10 00:46 - 04514816 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-12-09 13:22 - 2015-11-10 00:37 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-12-09 13:22 - 2015-11-10 00:36 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-12-09 13:22 - 2015-11-10 00:35 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-12-09 13:22 - 2015-11-10 00:17 - 02011136 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-12-09 13:22 - 2015-11-05 20:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2015-12-09 13:22 - 2015-11-05 20:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-12-09 13:22 - 2015-11-05 10:48 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-12-09 13:22 - 2015-11-03 19:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-12-09 13:22 - 2015-11-03 19:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2015-12-09 13:22 - 2015-10-09 00:17 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2015-12-09 13:22 - 2015-10-09 00:13 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2015-12-09 13:22 - 2015-10-09 00:13 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2015-12-09 13:22 - 2015-10-09 00:13 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2015-12-09 13:22 - 2015-10-08 20:13 - 00419928 _____ C:\Windows\system32\locale.nls
2015-12-01 22:29 - 2015-12-01 22:29 - 00000896 _____ C:\Users\Public\Desktop\AVG.lnk
2015-12-01 22:29 - 2015-12-01 22:29 - 00000896 _____ C:\ProgramData\Desktop\AVG.lnk
2015-12-01 22:29 - 2015-12-01 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2015-11-29 23:03 - 2015-12-27 09:17 - 00000000 ____D C:\ProgramData\NetSoftware
2015-11-29 23:03 - 2015-11-29 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetSoftware
2015-11-29 23:02 - 2015-12-27 09:20 - 00000000 ____D C:\Program Files\NetSoftware
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-12-27 09:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows
2015-12-27 09:16 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-27 08:03 - 2009-07-14 05:34 - 00028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-27 08:03 - 2009-07-14 05:34 - 00028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-27 08:00 - 2010-11-21 02:16 - 03018220 _____ C:\Windows\system32\perfh005.dat
2015-12-27 08:00 - 2010-11-21 02:16 - 00955626 _____ C:\Windows\system32\perfc005.dat
2015-12-27 08:00 - 2010-11-20 22:01 - 00006224 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-27 07:55 - 2014-07-30 17:27 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-12-27 06:39 - 2014-07-30 20:17 - 00000000 ____D C:\Program Files\Ashampoo
2015-12-27 06:38 - 2014-07-30 20:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-12-27 06:33 - 2014-07-30 19:57 - 00000000 ____D C:\ProgramData\Ashampoo
2015-12-26 20:15 - 2015-02-13 13:22 - 00000000 ____D C:\ProgramData\MFAData
2015-12-26 11:15 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2015-12-26 10:16 - 2014-07-30 17:21 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-12-26 10:06 - 2014-09-04 20:10 - 00000000 ____D C:\Windows\erdnt
2015-12-25 16:33 - 2009-07-14 03:04 - 00000215 _____ C:\Windows\system.ini
2015-12-25 16:31 - 2009-07-14 03:03 - 51904512 _____ C:\Windows\system32\config\software.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 24903680 _____ C:\Windows\system32\config\COMPON~2.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 23855104 _____ C:\Windows\system32\config\system.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 00524288 _____ C:\Windows\system32\config\default.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 00024576 _____ C:\Windows\system32\config\security.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 00020480 _____ C:\Windows\system32\config\sam.bak
2015-12-25 16:30 - 2014-08-14 19:46 - 00000000 ___RD C:\Program Files\Skype
2015-12-25 08:38 - 2014-07-30 17:52 - 00030848 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-12-24 10:52 - 2010-11-21 02:16 - 00000000 ____D C:\Windows\DigitalLocker
2015-12-24 10:52 - 2009-07-14 05:53 - 00032556 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-12-24 07:51 - 2014-08-14 19:46 - 00000000 ____D C:\Users\pc\AppData\Roaming\Skype
2015-12-21 22:30 - 2014-07-30 17:03 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-12-21 22:30 - 2014-07-30 17:03 - 00000965 _____ C:\ProgramData\Desktop\CCleaner.lnk
2015-12-19 12:38 - 2015-04-04 02:00 - 00000000 ___SD C:\Windows\system32\GWX
2015-12-15 19:11 - 2015-11-10 15:32 - 00000000 ____D C:\ProgramData\IObit
2015-12-15 19:11 - 2014-11-13 19:54 - 00000000 ____D C:\Users\pc\AppData\Roaming\IObit
2015-12-14 17:34 - 2014-07-30 19:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-14 17:34 - 2014-07-30 19:08 - 00000000 ____D C:\Program Files\Java
2015-12-14 17:07 - 2009-07-14 05:34 - 00000000 ____D C:\Windows\Setup
2015-12-14 13:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Vss
2015-12-13 20:55 - 2014-07-30 16:35 - 00000000 ____D C:\Users\pc\AppData\Local\ElevatedDiagnostics
2015-12-13 16:10 - 2010-11-21 02:24 - 00000000 ____D C:\Windows\ShellNew
2015-12-13 15:31 - 2015-10-22 14:17 - 00000000 ____D C:\Users\pc\AppData\Local\Avg
2015-12-13 15:25 - 2014-07-30 17:32 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-12-13 15:25 - 2014-07-30 17:32 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-12-10 13:53 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2015-12-09 20:42 - 2015-02-06 00:06 - 00357128 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-09 16:36 - 2014-07-31 10:15 - 00000000 ____D C:\Windows\system32\MRT
2015-12-09 16:32 - 2014-07-31 10:15 - 137798368 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-12-06 23:20 - 2015-09-15 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2015-12-06 23:20 - 2014-07-30 18:15 - 00000000 ___RD C:\Users\pc\Desktop\WinZip
2015-12-06 23:20 - 2014-07-30 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip CZ
2015-12-06 07:34 - 2015-05-12 20:25 - 00000000 ____D C:\Program Files\WinZip
2015-12-01 22:53 - 2015-10-20 14:03 - 00000000 ___RD C:\Users\pc\Desktop\Topení
2015-12-01 22:34 - 2015-02-13 13:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-12-01 22:29 - 2015-10-24 21:53 - 00000000 ____D C:\ProgramData\Avg
2015-12-01 22:29 - 2015-10-24 21:37 - 00000000 ____D C:\Users\pc\AppData\Local\AvgSetupLog
2015-12-01 22:29 - 2015-02-13 13:24 - 00000000 ____D C:\Program Files\AVG
2015-11-28 20:34 - 2015-04-19 06:50 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories =======
2014-07-30 18:17 - 2014-07-30 18:17 - 0007887 _____ () C:\Users\pc\AppData\Roaming\pcouffin.cat
2014-07-30 18:17 - 2014-07-30 18:17 - 0001144 _____ () C:\Users\pc\AppData\Roaming\pcouffin.inf
2014-07-30 18:17 - 2014-07-30 18:17 - 0047360 _____ (VSO Software) C:\Users\pc\AppData\Roaming\pcouffin.sys
2014-10-06 15:19 - 2014-10-06 15:19 - 0000017 _____ () C:\Users\pc\AppData\Local\resmon.resmoncfg
2015-09-16 10:14 - 2015-09-16 10:32 - 0000059 _____ () C:\Users\pc\AppData\Local\UserProducts.xml
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-12-20 09:40
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-12-2015
Ran by pc (2015-12-27 09:21:50)
Running from C:\Users\pc\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2014-07-30 14:21:12)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-860103369-4256068919-2072106398-500 - Administrator - Disabled)
Guest (S-1-5-21-860103369-4256068919-2072106398-501 - Limited - Disabled)
pc (S-1-5-21-860103369-4256068919-2072106398-1000 - Administrator - Enabled) => C:\Users\pc
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus Free Edition (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (Version: 8.1.4 - Hewlett-Packard) Hidden
Adblock Pro 2.6 (HKLM\...\Adblock Pro) (Version: 2.6 - Adblock Pro, Inc.)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM\...\InstallShield_{6D2EFF3B-B191-4B1F-8ABF-C4A8028DB8CF}) (Version: 1.13.17.36725 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (Version: 1.13.17.36725 - Alcor Micro Corp.) Hidden
AMD Catalyst Install Manager (HKLM\...\{7EC000DE-9910-63DF-DA31-A7D2888E0012}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Ashampoo Burning Studio 14 v.14.0.5 (HKLM\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.5 - Ashampoo GmbH & Co. KG)
AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies)
AVG (Version: 16.12.7294 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4489 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.12.7294 - AVG Technologies)
AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden
Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
Broadcom NetXtreme-I Netlink Driver and Management Installer (HKLM\...\{0AEF4677-C1BE-489C-A5BA-85382F8DA38B}) (Version: 15.4.13.1 - Broadcom Corporation)
ccc-core-static (Version: 2010.0210.2339.42455 - Název společnosti:) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
ConvertXtoDVD 2.2.3.258 (HKLM\...\{BB406CEB-6207-4512-9BB2-89950DC9D6B6}_is1) (Version: 2.2.3.258 - VSO-Software SARL)
DVDFab 9.1.5.9 (25/07/2014) (HKLM\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden
Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden
Java 8 Update 66 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Kdo je kdo 2.3.1 (HKU\S-1-5-21-860103369-4256068919-2072106398-1000\...\Kdo je kdo 2.3.1) (Version: - )
K-Lite Mega Codec Pack 10.6.0 (HKLM\...\KLiteCodecPack_is1) (Version: 10.6.0 - )
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5800 - Broadcom Corporation)
LG PC Suite (HKLM\...\LG PC Suite) (Version: 5.3.24.20150327 - LG Electronics)
LG United Mobile Drivers (HKLM\...\{2D5218EB-6992-46E3-8ECE-76C79AB955CE}) (Version: 3.13.2.0 - LG Electronics)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 43.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 43.0.2 (x86 cs)) (Version: 43.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla)
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NetSoftware (HKLM\...\NetSoftware) (Version: - Gemius SA.)
Nokia Suite (Version: 3.8.54.0 - Nokia) Hidden
PC Connectivity Solution (HKLM\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Rajče průvodce verze 1.59.54.269 (HKLM\...\rajce.net_is1) (Version: - rajce.net)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Sada Compatibility Pack pro systém Office 2007 (HKLM\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Seznam Instalátor (HKLM\...\ssinstall) (Version: - Seznam.cz)
Skins (Version: 2010.0210.2339.42455 - ATI) Hidden
Skype™ 7.6 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.)
SlimDrivers (HKLM\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.0 - VideoLAN)
WinZip 12.1 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240B8}) (Version: 12.1.8519 - WinZip Computing, S.L. )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {132F82C1-F9C3-490B-BBC3-EE259F04C00C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {3C0D60F7-A92D-4A17-A7E1-7873B669B915} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {4B7871B8-79C5-4942-9883-C0FA61F806CD} - \AdvancedDriverUpdaterRunAtStartup -> No File <==== ATTENTION
Task: {4CD618E8-BA97-4551-98F8-C31435AF1ED3} - System32\Tasks\{D6D98FFB-52FF-4EC0-B5E6-59E7366B9695} => C:\Users\pc\Desktop\driver genius 12 pro\crack\DriverGenius.exe
Task: {71992CC9-2F1C-43E0-ACFB-54C4505B2775} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd)
Task: {81883654-E618-4DB4-9602-BE8D576154B0} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {8F9EB5EC-1739-4C2C-ABED-8CFF91C7FF0E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {A1A9FCF9-DEE5-4CE4-A118-52C587D9CAF5} - System32\Tasks\{F8FC0305-1501-4429-B7FD-D1B0FA95DFCB} => pcalua.exe -a "F:\Programy\WinZip 12.1\winzip_12_1_cestina.exe" -d "F:\Programy\WinZip 12.1"
Task: {AE0C4201-F740-4E9C-B238-E24FEFB3D1A6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-10] (Adobe Systems Incorporated)
Task: {CC14FEA3-1E4A-44A6-B1B4-98B11F035CF4} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {E1859085-F238-4FB6-BF75-7A2CAB22EADA} - System32\Tasks\{E07AB695-AA10-45BC-8D90-782A467E3AB3} => pcalua.exe -a C:\Windows\system32\BTCPL.cpl
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-10-24 21:53 - 2015-10-24 21:37 - 40500224 _____ () C:\Program Files\AVG\UiDll\2171\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2015-12-25 16:32 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\pc\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 172.20.0.1 - 188.116.64.5
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: AmIcoSinglun => C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
MSCONFIG\startupreg: StartCCC => "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{4DFCB9C9-74EE-40C1-B10C-DABBD32C6562}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{B7127D4B-1199-4633-8169-4232ECF95506}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{64CC535D-D491-4BB8-A286-6BB6FD9A6F74}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{129288BC-F2F7-40FF-AC99-7A7F298668D6}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{93D9D3A8-1742-4105-9BDB-FF28CF6692DF}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{3ED225AD-AA6F-42E5-906F-6C7E88601141}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{EDA01231-43E7-4486-92AC-CABBE20B1F75}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{F7E035F2-7D20-4ABC-92CC-56AC75A9FE5C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{DC13B16A-E1AB-4F80-997C-6733086431E3}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{C4230EA3-7C16-473E-986E-F9878E7210F6}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{5AD178B3-A29D-401A-BF01-10A3850F7F2C}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{77FE05F0-FBD9-4FC1-B158-A8F72B52B330}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{FDAA6411-61AD-42E4-BAE1-1C57E7EA59AF}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{8943D7CA-7EC4-482A-BE87-583752A2C34D}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{9F96A9C3-F256-4BC1-B430-77EA87062873}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe
FirewallRules: [{34454A93-E0C2-4C22-8BB5-5A672B6D64B4}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe
==================== Restore Points =========================
26-12-2015 10:07:04 ComboFix created restore point
27-12-2015 06:16:17 Revo Uninstaller's restore point - Ashampoo WinOptimizer 12
27-12-2015 06:38:02 Revo Uninstaller's restore point - Ashampoo WinOptimizer FREE v.1.0.0
==================== Faulty Device Manager Devices =============
Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: BAPIDRV
Description: BAPIDRV
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: BAPIDRV
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/27/2015 09:16:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/27/2015 08:00:06 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.
Error: (12/27/2015 08:00:06 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.
Error: (12/27/2015 08:00:06 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.
Error: (12/27/2015 07:55:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/27/2015 06:16:17 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.
Operace:
Shromažďování dat modulu pro zápis
Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {f3c853d7-9f19-4851-93bd-26d071ceff07}
Error: (12/27/2015 05:39:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.
Error: (12/27/2015 05:39:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.
Error: (12/27/2015 05:39:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.
Error: (12/27/2015 05:33:59 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (12/26/2015 09:53:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2015 08:43:41 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2015 04:32:25 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:30:58, 25.12.2015) bylo neočekávané.
Error: (12/25/2015 04:20:06 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/25/2015 04:10:23 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/25/2015 03:51:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby btwdins bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2015 10:16:12 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/25/2015 10:05:14 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/25/2015 09:55:51 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/24/2015 06:35:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
==================== Memory info ===========================
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4800+
Percentage of memory in use: 54%
Total physical RAM: 1918.33 MB
Available physical RAM: 867.5 MB
Total Virtual: 3836.66 MB
Available Virtual: 2649.48 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:97.66 GB) (Free:43.98 GB) NTFS
Drive f: (Místní disk E) (Fixed) (Total:368.1 GB) (Free:324.24 GB) NTFS ==>[system with boot components (obtained from drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 465.8 GB) (Disk ID: C3DFC3DF)
Partition 1: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=368.1 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-12-2015
Ran by pc (administrator) on ELIŠKA (27-12-2015 09:20:53)
Running from C:\Users\pc\Desktop
Loaded Profiles: pc (Available Profiles: pc)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac7302\Monitor.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Broadcom Corporation) C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Gemius) C:\Program Files\NetSoftware\NetSoftware.exe
(PS Media s.r.o.) C:\Windows\System32\ssins.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3855272 2015-11-20] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14688512 2015-11-10] (Realtek Semiconductor)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [323584 2007-12-10] (PixArt Imaging Incorporation)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [NetSoftware] => C:\Program Files\NetSoftware\Starter.exe [223216 2015-12-21] (Gemius)
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 172.20.0.1 188.116.64.5
Tcpip\..\Interfaces\{39C2584A-1543-461E-AA43-BACBF2239248}: [DhcpNameServer] 172.20.0.1 188.116.64.5
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-860103369-4256068919-2072106398-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-21] (Oracle Corporation)
BHO: Internet Panel -> {CE7C3CF0-4B15-11D1-ABED-709549C10000} -> C:\Program Files\NetSoftware\IEHelper.dll [2015-12-24] (Gemius)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-21] (Oracle Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
FireFox:
========
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\cri16llo.default
FF NewTab: about:newtab
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-13] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-21] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\cri16llo.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-26]
FF HKU\S-1-5-21-860103369-4256068919-2072106398-1000\...\Firefox\Extensions: [gemgecko@gemius.com] - C:\Program Files\NetSoftware\gemgecko_ext
FF Extension: Netpanel - C:\Program Files\NetSoftware\gemgecko_ext [2015-12-21]
Chrome:
=======
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-08]
CHR Extension: (Google Docs) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-08]
CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-08]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-08]
CHR Extension: (Google Search) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-08]
CHR Extension: (Google Sheets) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-08]
CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-08]
CHR HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kegdldmohomdaelnepdpbkdhfemobdgl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
S3 AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [615584 2015-11-20] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3857272 2015-11-20] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [862632 2015-11-12] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [579776 2015-11-20] (AVG Technologies CZ, s.r.o.)
R2 BrcmMgmtAgent; C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe [154624 2012-08-02] (Broadcom Corporation) [File not signed]
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [829696 2014-07-17] (Broadcom Corporation.)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [45568 2011-04-13] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [55808 2011-04-13] (Hewlett-Packard) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [266496 2015-11-10] (Realtek Semiconductor)
R2 ssinstall; C:\Windows\System32\ssins.exe [2324216 2014-12-25] (PS Media s.r.o.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [11944 2014-11-15] (Advanced Micro Devices Inc.)
R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [76952 2015-11-10] (Alcor Micro, Corp.)
S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus.sys [15744 2014-10-09] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [23680 2014-10-09] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [28416 2014-10-09] (LG Electronics Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [149936 2015-11-06] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [255920 2015-11-06] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [231344 2015-08-20] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [308656 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [193968 2015-11-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [36784 2015-08-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [231856 2015-10-08] (AVG Technologies CZ, s.r.o.)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [176856 2013-10-02] (Broadcom Corporation.)
R3 btwampfl; C:\Windows\system32\drivers\btwampfl.sys [508632 2014-03-25] (Broadcom Corporation.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-11-10] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [461824 2009-04-28] (PixArt Imaging Inc.)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624 2014-06-04] (IObit)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S1 BAPIDRV; system32\DRIVERS\BAPIDRV.sys [X]
S3 btaudio; system32\drivers\btaudio.sys [X]
S3 BTDriver; system32\DRIVERS\btport.sys [X]
S3 BTWDNDIS; system32\DRIVERS\btwdndis.sys [X]
S3 btwhid; system32\DRIVERS\btwhid.sys [X]
S3 BTWUSB; System32\Drivers\btwusb.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-12-27 09:20 - 2015-12-27 09:21 - 00012613 _____ C:\Users\pc\Desktop\FRST.txt
2015-12-27 09:20 - 2015-12-27 09:20 - 00000000 ____D C:\FRST
2015-12-27 09:19 - 2015-12-27 09:19 - 01721856 _____ (Farbar) C:\Users\pc\Desktop\FRST.exe
2015-12-27 06:33 - 2009-08-24 21:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2015-12-27 05:51 - 2015-12-27 05:52 - 90861608 _____ (Ashampoo GmbH & Co. KG ) C:\Users\pc\Desktop\ashampoo_burning_studio_16_e16.0.4_sm.exe
2015-12-26 23:09 - 2015-12-27 05:34 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-12-24 18:38 - 2015-12-24 18:01 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-12-24 18:01 - 2015-12-24 18:35 - 00000000 ____D C:\zoek_backup
2015-12-24 17:39 - 2015-12-24 17:39 - 01309184 _____ C:\Users\pc\Desktop\zoek.exe
2015-12-24 10:47 - 2015-12-24 10:47 - 00002205 _____ C:\MBAM po smazání.txt
2015-12-24 10:09 - 2015-12-24 10:21 - 00000000 ____D C:\AdwCleaner
2015-12-24 09:49 - 2015-12-24 09:49 - 01743360 _____ C:\Users\pc\Desktop\adwcleaner_5.026.exe
2015-12-24 09:49 - 2015-12-24 09:49 - 00448512 _____ (OldTimer Tools) C:\Users\pc\Desktop\TFC.exe
2015-12-24 08:11 - 2015-12-24 08:11 - 00388608 _____ (Trend Micro Inc.) C:\Users\pc\Desktop\HijackThis.exe
2015-12-15 21:24 - 2015-12-21 22:35 - 00000574 _____ C:\DelFix.txt
2015-12-14 14:00 - 2015-12-14 14:00 - 00000091 _____ C:\Users\pc\Desktop\Nový textový dokument.txt
2015-12-13 15:27 - 2015-12-13 15:27 - 00050688 _____ (Atribune.org) C:\Users\pc\Desktop\ATF-Cleaner.exe
2015-12-09 13:23 - 2015-11-11 21:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-12-09 13:23 - 2015-11-11 19:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-12-09 13:23 - 2015-11-11 19:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-12-09 13:23 - 2015-11-11 16:44 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-12-09 13:23 - 2015-11-10 19:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-12-09 13:23 - 2015-11-10 19:39 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-12-09 13:23 - 2015-11-10 19:39 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-12-09 13:23 - 2015-11-10 18:40 - 02386944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-12-09 13:23 - 2015-11-10 01:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-12-09 13:23 - 2015-11-10 01:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-12-09 13:23 - 2015-11-10 01:06 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-12-09 13:23 - 2015-11-10 01:06 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-12-09 13:23 - 2015-11-10 01:03 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-12-09 13:23 - 2015-11-10 01:03 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-12-09 13:23 - 2015-11-10 01:02 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-12-09 13:23 - 2015-11-10 00:57 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-12-09 13:23 - 2015-11-10 00:50 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-12-09 13:23 - 2015-11-10 00:44 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-12-09 13:23 - 2015-11-10 00:36 - 00687104 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-12-09 13:23 - 2015-11-10 00:36 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-12-09 13:23 - 2015-11-10 00:14 - 01311744 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-12-09 13:23 - 2015-11-10 00:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 02956800 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-12-09 13:22 - 2015-11-20 19:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-12-09 13:22 - 2015-11-20 19:33 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-12-09 13:22 - 2015-11-20 19:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-12-09 13:22 - 2015-11-20 19:33 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-12-09 13:22 - 2015-11-11 17:00 - 12856832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-12-09 13:22 - 2015-11-11 16:44 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-12-09 13:22 - 2015-11-11 16:41 - 20366848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-12-09 13:22 - 2015-11-11 15:57 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-12-09 13:22 - 2015-11-10 01:24 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-12-09 13:22 - 2015-11-10 01:13 - 00496640 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-12-09 13:22 - 2015-11-10 01:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-12-09 13:22 - 2015-11-10 01:12 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-12-09 13:22 - 2015-11-10 01:11 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-12-09 13:22 - 2015-11-10 01:08 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-12-09 13:22 - 2015-11-10 01:04 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-12-09 13:22 - 2015-11-10 01:02 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-12-09 13:22 - 2015-11-10 00:47 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-12-09 13:22 - 2015-11-10 00:46 - 04514816 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-12-09 13:22 - 2015-11-10 00:37 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-12-09 13:22 - 2015-11-10 00:36 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-12-09 13:22 - 2015-11-10 00:35 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-12-09 13:22 - 2015-11-10 00:17 - 02011136 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-12-09 13:22 - 2015-11-05 20:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2015-12-09 13:22 - 2015-11-05 20:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-12-09 13:22 - 2015-11-05 10:48 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-12-09 13:22 - 2015-11-03 19:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-12-09 13:22 - 2015-11-03 19:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2015-12-09 13:22 - 2015-10-09 00:17 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2015-12-09 13:22 - 2015-10-09 00:13 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2015-12-09 13:22 - 2015-10-09 00:13 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2015-12-09 13:22 - 2015-10-09 00:13 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2015-12-09 13:22 - 2015-10-08 20:13 - 00419928 _____ C:\Windows\system32\locale.nls
2015-12-01 22:29 - 2015-12-01 22:29 - 00000896 _____ C:\Users\Public\Desktop\AVG.lnk
2015-12-01 22:29 - 2015-12-01 22:29 - 00000896 _____ C:\ProgramData\Desktop\AVG.lnk
2015-12-01 22:29 - 2015-12-01 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2015-11-29 23:03 - 2015-12-27 09:17 - 00000000 ____D C:\ProgramData\NetSoftware
2015-11-29 23:03 - 2015-11-29 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetSoftware
2015-11-29 23:02 - 2015-12-27 09:20 - 00000000 ____D C:\Program Files\NetSoftware
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-12-27 09:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows
2015-12-27 09:16 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-27 08:03 - 2009-07-14 05:34 - 00028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-27 08:03 - 2009-07-14 05:34 - 00028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-27 08:00 - 2010-11-21 02:16 - 03018220 _____ C:\Windows\system32\perfh005.dat
2015-12-27 08:00 - 2010-11-21 02:16 - 00955626 _____ C:\Windows\system32\perfc005.dat
2015-12-27 08:00 - 2010-11-20 22:01 - 00006224 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-27 07:55 - 2014-07-30 17:27 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-12-27 06:39 - 2014-07-30 20:17 - 00000000 ____D C:\Program Files\Ashampoo
2015-12-27 06:38 - 2014-07-30 20:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-12-27 06:33 - 2014-07-30 19:57 - 00000000 ____D C:\ProgramData\Ashampoo
2015-12-26 20:15 - 2015-02-13 13:22 - 00000000 ____D C:\ProgramData\MFAData
2015-12-26 11:15 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2015-12-26 10:16 - 2014-07-30 17:21 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-12-26 10:06 - 2014-09-04 20:10 - 00000000 ____D C:\Windows\erdnt
2015-12-25 16:33 - 2009-07-14 03:04 - 00000215 _____ C:\Windows\system.ini
2015-12-25 16:31 - 2009-07-14 03:03 - 51904512 _____ C:\Windows\system32\config\software.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 24903680 _____ C:\Windows\system32\config\COMPON~2.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 23855104 _____ C:\Windows\system32\config\system.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 00524288 _____ C:\Windows\system32\config\default.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 00024576 _____ C:\Windows\system32\config\security.bak
2015-12-25 16:31 - 2009-07-14 03:03 - 00020480 _____ C:\Windows\system32\config\sam.bak
2015-12-25 16:30 - 2014-08-14 19:46 - 00000000 ___RD C:\Program Files\Skype
2015-12-25 08:38 - 2014-07-30 17:52 - 00030848 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-12-24 10:52 - 2010-11-21 02:16 - 00000000 ____D C:\Windows\DigitalLocker
2015-12-24 10:52 - 2009-07-14 05:53 - 00032556 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-12-24 07:51 - 2014-08-14 19:46 - 00000000 ____D C:\Users\pc\AppData\Roaming\Skype
2015-12-21 22:30 - 2014-07-30 17:03 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-12-21 22:30 - 2014-07-30 17:03 - 00000965 _____ C:\ProgramData\Desktop\CCleaner.lnk
2015-12-19 12:38 - 2015-04-04 02:00 - 00000000 ___SD C:\Windows\system32\GWX
2015-12-15 19:11 - 2015-11-10 15:32 - 00000000 ____D C:\ProgramData\IObit
2015-12-15 19:11 - 2014-11-13 19:54 - 00000000 ____D C:\Users\pc\AppData\Roaming\IObit
2015-12-14 17:34 - 2014-07-30 19:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-14 17:34 - 2014-07-30 19:08 - 00000000 ____D C:\Program Files\Java
2015-12-14 17:07 - 2009-07-14 05:34 - 00000000 ____D C:\Windows\Setup
2015-12-14 13:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Vss
2015-12-13 20:55 - 2014-07-30 16:35 - 00000000 ____D C:\Users\pc\AppData\Local\ElevatedDiagnostics
2015-12-13 16:10 - 2010-11-21 02:24 - 00000000 ____D C:\Windows\ShellNew
2015-12-13 15:31 - 2015-10-22 14:17 - 00000000 ____D C:\Users\pc\AppData\Local\Avg
2015-12-13 15:25 - 2014-07-30 17:32 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-12-13 15:25 - 2014-07-30 17:32 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-12-10 13:53 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2015-12-09 20:42 - 2015-02-06 00:06 - 00357128 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-09 16:36 - 2014-07-31 10:15 - 00000000 ____D C:\Windows\system32\MRT
2015-12-09 16:32 - 2014-07-31 10:15 - 137798368 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-12-06 23:20 - 2015-09-15 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2015-12-06 23:20 - 2014-07-30 18:15 - 00000000 ___RD C:\Users\pc\Desktop\WinZip
2015-12-06 23:20 - 2014-07-30 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip CZ
2015-12-06 07:34 - 2015-05-12 20:25 - 00000000 ____D C:\Program Files\WinZip
2015-12-01 22:53 - 2015-10-20 14:03 - 00000000 ___RD C:\Users\pc\Desktop\Topení
2015-12-01 22:34 - 2015-02-13 13:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-12-01 22:29 - 2015-10-24 21:53 - 00000000 ____D C:\ProgramData\Avg
2015-12-01 22:29 - 2015-10-24 21:37 - 00000000 ____D C:\Users\pc\AppData\Local\AvgSetupLog
2015-12-01 22:29 - 2015-02-13 13:24 - 00000000 ____D C:\Program Files\AVG
2015-11-28 20:34 - 2015-04-19 06:50 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories =======
2014-07-30 18:17 - 2014-07-30 18:17 - 0007887 _____ () C:\Users\pc\AppData\Roaming\pcouffin.cat
2014-07-30 18:17 - 2014-07-30 18:17 - 0001144 _____ () C:\Users\pc\AppData\Roaming\pcouffin.inf
2014-07-30 18:17 - 2014-07-30 18:17 - 0047360 _____ (VSO Software) C:\Users\pc\AppData\Roaming\pcouffin.sys
2014-10-06 15:19 - 2014-10-06 15:19 - 0000017 _____ () C:\Users\pc\AppData\Local\resmon.resmoncfg
2015-09-16 10:14 - 2015-09-16 10:32 - 0000059 _____ () C:\Users\pc\AppData\Local\UserProducts.xml
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-12-20 09:40
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-12-2015
Ran by pc (2015-12-27 09:21:50)
Running from C:\Users\pc\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2014-07-30 14:21:12)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-860103369-4256068919-2072106398-500 - Administrator - Disabled)
Guest (S-1-5-21-860103369-4256068919-2072106398-501 - Limited - Disabled)
pc (S-1-5-21-860103369-4256068919-2072106398-1000 - Administrator - Enabled) => C:\Users\pc
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus Free Edition (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (Version: 8.1.4 - Hewlett-Packard) Hidden
Adblock Pro 2.6 (HKLM\...\Adblock Pro) (Version: 2.6 - Adblock Pro, Inc.)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM\...\InstallShield_{6D2EFF3B-B191-4B1F-8ABF-C4A8028DB8CF}) (Version: 1.13.17.36725 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (Version: 1.13.17.36725 - Alcor Micro Corp.) Hidden
AMD Catalyst Install Manager (HKLM\...\{7EC000DE-9910-63DF-DA31-A7D2888E0012}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Ashampoo Burning Studio 14 v.14.0.5 (HKLM\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.5 - Ashampoo GmbH & Co. KG)
AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies)
AVG (Version: 16.12.7294 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4489 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.12.7294 - AVG Technologies)
AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden
Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
Broadcom NetXtreme-I Netlink Driver and Management Installer (HKLM\...\{0AEF4677-C1BE-489C-A5BA-85382F8DA38B}) (Version: 15.4.13.1 - Broadcom Corporation)
ccc-core-static (Version: 2010.0210.2339.42455 - Název společnosti:) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
ConvertXtoDVD 2.2.3.258 (HKLM\...\{BB406CEB-6207-4512-9BB2-89950DC9D6B6}_is1) (Version: 2.2.3.258 - VSO-Software SARL)
DVDFab 9.1.5.9 (25/07/2014) (HKLM\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden
Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden
Java 8 Update 66 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Kdo je kdo 2.3.1 (HKU\S-1-5-21-860103369-4256068919-2072106398-1000\...\Kdo je kdo 2.3.1) (Version: - )
K-Lite Mega Codec Pack 10.6.0 (HKLM\...\KLiteCodecPack_is1) (Version: 10.6.0 - )
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5800 - Broadcom Corporation)
LG PC Suite (HKLM\...\LG PC Suite) (Version: 5.3.24.20150327 - LG Electronics)
LG United Mobile Drivers (HKLM\...\{2D5218EB-6992-46E3-8ECE-76C79AB955CE}) (Version: 3.13.2.0 - LG Electronics)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 43.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 43.0.2 (x86 cs)) (Version: 43.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla)
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NetSoftware (HKLM\...\NetSoftware) (Version: - Gemius SA.)
Nokia Suite (Version: 3.8.54.0 - Nokia) Hidden
PC Connectivity Solution (HKLM\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Rajče průvodce verze 1.59.54.269 (HKLM\...\rajce.net_is1) (Version: - rajce.net)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Sada Compatibility Pack pro systém Office 2007 (HKLM\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Seznam Instalátor (HKLM\...\ssinstall) (Version: - Seznam.cz)
Skins (Version: 2010.0210.2339.42455 - ATI) Hidden
Skype™ 7.6 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.)
SlimDrivers (HKLM\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.0 - VideoLAN)
WinZip 12.1 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240B8}) (Version: 12.1.8519 - WinZip Computing, S.L. )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {132F82C1-F9C3-490B-BBC3-EE259F04C00C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {3C0D60F7-A92D-4A17-A7E1-7873B669B915} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {4B7871B8-79C5-4942-9883-C0FA61F806CD} - \AdvancedDriverUpdaterRunAtStartup -> No File <==== ATTENTION
Task: {4CD618E8-BA97-4551-98F8-C31435AF1ED3} - System32\Tasks\{D6D98FFB-52FF-4EC0-B5E6-59E7366B9695} => C:\Users\pc\Desktop\driver genius 12 pro\crack\DriverGenius.exe
Task: {71992CC9-2F1C-43E0-ACFB-54C4505B2775} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd)
Task: {81883654-E618-4DB4-9602-BE8D576154B0} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {8F9EB5EC-1739-4C2C-ABED-8CFF91C7FF0E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {A1A9FCF9-DEE5-4CE4-A118-52C587D9CAF5} - System32\Tasks\{F8FC0305-1501-4429-B7FD-D1B0FA95DFCB} => pcalua.exe -a "F:\Programy\WinZip 12.1\winzip_12_1_cestina.exe" -d "F:\Programy\WinZip 12.1"
Task: {AE0C4201-F740-4E9C-B238-E24FEFB3D1A6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-10] (Adobe Systems Incorporated)
Task: {CC14FEA3-1E4A-44A6-B1B4-98B11F035CF4} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {E1859085-F238-4FB6-BF75-7A2CAB22EADA} - System32\Tasks\{E07AB695-AA10-45BC-8D90-782A467E3AB3} => pcalua.exe -a C:\Windows\system32\BTCPL.cpl
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-10-24 21:53 - 2015-10-24 21:37 - 40500224 _____ () C:\Program Files\AVG\UiDll\2171\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2015-12-25 16:32 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\pc\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 172.20.0.1 - 188.116.64.5
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: AmIcoSinglun => C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
MSCONFIG\startupreg: StartCCC => "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{4DFCB9C9-74EE-40C1-B10C-DABBD32C6562}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{B7127D4B-1199-4633-8169-4232ECF95506}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{64CC535D-D491-4BB8-A286-6BB6FD9A6F74}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{129288BC-F2F7-40FF-AC99-7A7F298668D6}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{93D9D3A8-1742-4105-9BDB-FF28CF6692DF}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{3ED225AD-AA6F-42E5-906F-6C7E88601141}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{EDA01231-43E7-4486-92AC-CABBE20B1F75}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{F7E035F2-7D20-4ABC-92CC-56AC75A9FE5C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{DC13B16A-E1AB-4F80-997C-6733086431E3}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{C4230EA3-7C16-473E-986E-F9878E7210F6}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{5AD178B3-A29D-401A-BF01-10A3850F7F2C}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{77FE05F0-FBD9-4FC1-B158-A8F72B52B330}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{FDAA6411-61AD-42E4-BAE1-1C57E7EA59AF}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{8943D7CA-7EC4-482A-BE87-583752A2C34D}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{9F96A9C3-F256-4BC1-B430-77EA87062873}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe
FirewallRules: [{34454A93-E0C2-4C22-8BB5-5A672B6D64B4}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe
==================== Restore Points =========================
26-12-2015 10:07:04 ComboFix created restore point
27-12-2015 06:16:17 Revo Uninstaller's restore point - Ashampoo WinOptimizer 12
27-12-2015 06:38:02 Revo Uninstaller's restore point - Ashampoo WinOptimizer FREE v.1.0.0
==================== Faulty Device Manager Devices =============
Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: BAPIDRV
Description: BAPIDRV
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: BAPIDRV
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/27/2015 09:16:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/27/2015 08:00:06 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.
Error: (12/27/2015 08:00:06 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.
Error: (12/27/2015 08:00:06 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.
Error: (12/27/2015 07:55:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/27/2015 06:16:17 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.
Operace:
Shromažďování dat modulu pro zápis
Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {f3c853d7-9f19-4851-93bd-26d071ceff07}
Error: (12/27/2015 05:39:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.
Error: (12/27/2015 05:39:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.
Error: (12/27/2015 05:39:18 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.
Error: (12/27/2015 05:33:59 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (12/26/2015 09:53:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2015 08:43:41 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2015 04:32:25 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:30:58, 25.12.2015) bylo neočekávané.
Error: (12/25/2015 04:20:06 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/25/2015 04:10:23 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/25/2015 03:51:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby btwdins bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2015 10:16:12 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/25/2015 10:05:14 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/25/2015 09:55:51 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (12/24/2015 06:35:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
==================== Memory info ===========================
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4800+
Percentage of memory in use: 54%
Total physical RAM: 1918.33 MB
Available physical RAM: 867.5 MB
Total Virtual: 3836.66 MB
Available Virtual: 2649.48 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:97.66 GB) (Free:43.98 GB) NTFS
Drive f: (Místní disk E) (Fixed) (Total:368.1 GB) (Free:324.24 GB) NTFS ==>[system with boot components (obtained from drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or

Partition 1: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=368.1 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu HJT
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-860103369-4256068919-2072106398-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
CHR HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kegdldmohomdaelnepdpbkdhfemobdgl] - hxxps://clients2.google.com/service/update2/crx
Task: {132F82C1-F9C3-490B-BBC3-EE259F04C00C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {3C0D60F7-A92D-4A17-A7E1-7873B669B915} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {4B7871B8-79C5-4942-9883-C0FA61F806CD} - \AdvancedDriverUpdaterRunAtStartup -> No File <==== ATTENTION
EmptyTemp:
End
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu HJT
Jaro tady je.......... Ještě dodatek, i po tomto všem je v MBAM zase těch 8 nálezů
Fix result of Farbar Recovery Scan Tool (x86) Version:25-12-2015
Ran by pc (2015-12-27 09:44:44) Run:1
Running from C:\Users\pc\Desktop
Loaded Profiles: pc (Available Profiles: pc)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-860103369-4256068919-2072106398-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
CHR HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kegdldmohomdaelnepdpbkdhfemobdgl] - hxxps://clients2.google.com/service/update2/crx
Task: {132F82C1-F9C3-490B-BBC3-EE259F04C00C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {3C0D60F7-A92D-4A17-A7E1-7873B669B915} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {4B7871B8-79C5-4942-9883-C0FA61F806CD} - \AdvancedDriverUpdaterRunAtStartup -> No File <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully.
"HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin" => key removed successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully.
"HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Google\Chrome\Extensions\kegdldmohomdaelnepdpbkdhfemobdgl" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{132F82C1-F9C3-490B-BBC3-EE259F04C00C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{132F82C1-F9C3-490B-BBC3-EE259F04C00C}" => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3C0D60F7-A92D-4A17-A7E1-7873B669B915}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C0D60F7-A92D-4A17-A7E1-7873B669B915}" => key removed successfully.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4B7871B8-79C5-4942-9883-C0FA61F806CD}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B7871B8-79C5-4942-9883-C0FA61F806CD}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdvancedDriverUpdaterRunAtStartup" => key removed successfully.
EmptyTemp: => 320.1 MB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 09:45:37 ====

Fix result of Farbar Recovery Scan Tool (x86) Version:25-12-2015
Ran by pc (2015-12-27 09:44:44) Run:1
Running from C:\Users\pc\Desktop
Loaded Profiles: pc (Available Profiles: pc)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-860103369-4256068919-2072106398-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [No File]
CHR HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kegdldmohomdaelnepdpbkdhfemobdgl] - hxxps://clients2.google.com/service/update2/crx
Task: {132F82C1-F9C3-490B-BBC3-EE259F04C00C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {3C0D60F7-A92D-4A17-A7E1-7873B669B915} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {4B7871B8-79C5-4942-9883-C0FA61F806CD} - \AdvancedDriverUpdaterRunAtStartup -> No File <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully.
"HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin" => key removed successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully.
"HKU\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Google\Chrome\Extensions\kegdldmohomdaelnepdpbkdhfemobdgl" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{132F82C1-F9C3-490B-BBC3-EE259F04C00C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{132F82C1-F9C3-490B-BBC3-EE259F04C00C}" => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3C0D60F7-A92D-4A17-A7E1-7873B669B915}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C0D60F7-A92D-4A17-A7E1-7873B669B915}" => key removed successfully.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4B7871B8-79C5-4942-9883-C0FA61F806CD}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B7871B8-79C5-4942-9883-C0FA61F806CD}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdvancedDriverUpdaterRunAtStartup" => key removed successfully.
EmptyTemp: => 320.1 MB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 09:45:37 ====
- jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu HJT
Co problémy?
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Kontrola logu HJT
Pořád nějak zadrhává.....
- jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu HJT
Stáhni si prosím Powelikscleaner (ESET)
a ulož jej na plochu. Poklepáním spusť nástroj. Přečti si podmínky licenční smlouvy s koncovým uživatelem a klepni na tlačítko „Agree“(Souhlasím)
- Nástroj se spustí automaticky. Když cleaner najde infekci Poweliks, stiskni klávesu „Y“ na klávesnici k jejímu odstranění.
- Zobrazí se , že detekovaná hrozba "Win32 / Poweliks byla úspěšně odstraněna ze systému".
("Win32/Poweliks was successfully removed from your system")
Stisknutím libovolné klávesy ukončete nástroj a restartujte počítač.
- Nástroj vytvoří protokol ve stejném adresáři z kterého byl nástroj spuštěn.
- Zprávu zkopíruj a vlož sem.
Stáhni si Emsisoft Emergency Kit
http://dl.emsisoft.com/EmsisoftEmergencyKit.exe
na svojí plochu. Poklepej na soubor EmsisoftEmergencyKit.exe . Ponech všechna nastavení tak, jak jsou a klikni na tlačítko „Extract“ v dolní části. Složka s názvem EEK bude vytvořena v kořenovém adresáři jednotky (obvykle c: \).
1) Po extrakci poklikej na novou ikonu Emsisoft Emergency Kit na Tvé ploše.
2) Při prvním spuštění Emsisoft Emergency Kit doporučujeme povolit stahování aktualizací. Prosím, klepni na tlačítko „Yes“ (Ano), potom se stáhne nejnovější aktualizace databáze.
3) Po dokončení procesu aktualizace se zobrazí nové tlačítko v levém dolním rohu, s názvem „ Back“. Klikni na toto tlačítko pro návrat na předešlou obrazovku .
4) Klikni na „Scan“ , ukáží se volby skenování. Pokud budeš dotázán, zda chceš, aby se vyhledávaly potenciálně nežádoucí programy, klepni na tlačítko „Yes“(Ano).
5) Klikni na tlačítko „Full Scan“ pro zahájení skenování.
6) Když je skenování dokončeno klikni na tlačítko „Quarantine“ (karanténa vybraných objektů). Poznámka: Tato možnost je k dispozici pouze v případě, že během kontroly byly zjištěny škodlivé objekty.
7) Když budou v karanténě hrozby, klepni na tlačítko „View report“ (Zobrazit zprávy) v pravém dolním rohu, a protokol skenu se otevře v poznámkovém bloku.
Prosím ulož si protokol v poznámkovém bloku na plochu, a vlož sem celý jeho obsah.
9) Když zavřeš Emsisoft Emergency Kit, bude Ti nabídnuta možnost přihlásit se k odběru novinek. Toto je volitelné a není to nezbytné odstraňování malware.
a ulož jej na plochu. Poklepáním spusť nástroj. Přečti si podmínky licenční smlouvy s koncovým uživatelem a klepni na tlačítko „Agree“(Souhlasím)
- Nástroj se spustí automaticky. Když cleaner najde infekci Poweliks, stiskni klávesu „Y“ na klávesnici k jejímu odstranění.
- Zobrazí se , že detekovaná hrozba "Win32 / Poweliks byla úspěšně odstraněna ze systému".
("Win32/Poweliks was successfully removed from your system")
Stisknutím libovolné klávesy ukončete nástroj a restartujte počítač.
- Nástroj vytvoří protokol ve stejném adresáři z kterého byl nástroj spuštěn.
- Zprávu zkopíruj a vlož sem.
Stáhni si Emsisoft Emergency Kit
http://dl.emsisoft.com/EmsisoftEmergencyKit.exe
na svojí plochu. Poklepej na soubor EmsisoftEmergencyKit.exe . Ponech všechna nastavení tak, jak jsou a klikni na tlačítko „Extract“ v dolní části. Složka s názvem EEK bude vytvořena v kořenovém adresáři jednotky (obvykle c: \).
1) Po extrakci poklikej na novou ikonu Emsisoft Emergency Kit na Tvé ploše.
2) Při prvním spuštění Emsisoft Emergency Kit doporučujeme povolit stahování aktualizací. Prosím, klepni na tlačítko „Yes“ (Ano), potom se stáhne nejnovější aktualizace databáze.
3) Po dokončení procesu aktualizace se zobrazí nové tlačítko v levém dolním rohu, s názvem „ Back“. Klikni na toto tlačítko pro návrat na předešlou obrazovku .
4) Klikni na „Scan“ , ukáží se volby skenování. Pokud budeš dotázán, zda chceš, aby se vyhledávaly potenciálně nežádoucí programy, klepni na tlačítko „Yes“(Ano).
5) Klikni na tlačítko „Full Scan“ pro zahájení skenování.
6) Když je skenování dokončeno klikni na tlačítko „Quarantine“ (karanténa vybraných objektů). Poznámka: Tato možnost je k dispozici pouze v případě, že během kontroly byly zjištěny škodlivé objekty.
7) Když budou v karanténě hrozby, klepni na tlačítko „View report“ (Zobrazit zprávy) v pravém dolním rohu, a protokol skenu se otevře v poznámkovém bloku.

9) Když zavřeš Emsisoft Emergency Kit, bude Ti nabídnuta možnost přihlásit se k odběru novinek. Toto je volitelné a není to nezbytné odstraňování malware.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Kontrola logu HJT
Snad se mi to podařilo, první bez problémů, druhý funguje trošku jinak, než bylo popsáno....
[2015.12.27 17:41:36.833] - Begin
[2015.12.27 17:41:36.833] -
[2015.12.27 17:41:36.849] - ....................................
[2015.12.27 17:41:36.849] - ..::::::::::::::::::....................
[2015.12.27 17:41:36.849] - .::EEEEEE:::SSSSSS::..EEEEEE..TTTTTTTT.. Win32/Poweliks
[2015.12.27 17:41:36.849] - .::EE::::EE:SS:::::::.EE....EE....TT...... Version: 1.0.0.5
[2015.12.27 17:41:36.849] - .::EEEEEEEE::SSSSSS::.EEEEEEEE....TT...... Built: Jun 30 2015
[2015.12.27 17:41:36.849] - .::EE:::::::::::::SS:.EE..........TT......
[2015.12.27 17:41:36.849] - .::EEEEEE:::SSSSSS::..EEEEEE.....TT..... Copyright (c) ESET, spol. s r.o.
[2015.12.27 17:41:36.849] - ..::::::::::::::::::.................... 1992-2015. All rights reserved.
[2015.12.27 17:41:36.849] - ....................................
[2015.12.27 17:41:36.849] -
[2015.12.27 17:41:36.849] - --------------------------------------------------------------------------------
[2015.12.27 17:41:36.849] -
[2015.12.27 17:41:36.849] - INFO: OS: 6.1.7601 SP1
[2015.12.27 17:41:36.849] - INFO: Product Type: Workstation
[2015.12.27 17:41:36.849] - INFO: WoW64: False
[2015.12.27 17:41:36.865] - INFO: Machine guid: 9C248BCF-60AD-40FB-A907-3148987AB58C
[2015.12.27 17:41:36.865] -
[2015.12.27 17:41:40.016] - INFO: Scanning for system infection...
[2015.12.27 17:41:40.016] - --------------------------------------------------------------------------------
[2015.12.27 17:41:40.016] -
[2015.12.27 17:41:40.016] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]...
[2015.12.27 17:41:40.031] - INFO: Processing classes...
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0031-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0031-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0032-ABCDEFFEDCBA}]
[2015.12.27 17:41:36.833] - Begin
[2015.12.27 17:41:36.833] -
[2015.12.27 17:41:36.849] - ....................................
[2015.12.27 17:41:36.849] - ..::::::::::::::::::....................
[2015.12.27 17:41:36.849] - .::EEEEEE:::SSSSSS::..EEEEEE..TTTTTTTT.. Win32/Poweliks
[2015.12.27 17:41:36.849] - .::EE::::EE:SS:::::::.EE....EE....TT...... Version: 1.0.0.5
[2015.12.27 17:41:36.849] - .::EEEEEEEE::SSSSSS::.EEEEEEEE....TT...... Built: Jun 30 2015
[2015.12.27 17:41:36.849] - .::EE:::::::::::::SS:.EE..........TT......
[2015.12.27 17:41:36.849] - .::EEEEEE:::SSSSSS::..EEEEEE.....TT..... Copyright (c) ESET, spol. s r.o.
[2015.12.27 17:41:36.849] - ..::::::::::::::::::.................... 1992-2015. All rights reserved.
[2015.12.27 17:41:36.849] - ....................................
[2015.12.27 17:41:36.849] -
[2015.12.27 17:41:36.849] - --------------------------------------------------------------------------------
[2015.12.27 17:41:36.849] -
[2015.12.27 17:41:36.849] - INFO: OS: 6.1.7601 SP1
[2015.12.27 17:41:36.849] - INFO: Product Type: Workstation
[2015.12.27 17:41:36.849] - INFO: WoW64: False
[2015.12.27 17:41:36.865] - INFO: Machine guid: 9C248BCF-60AD-40FB-A907-3148987AB58C
[2015.12.27 17:41:36.865] -
[2015.12.27 17:41:40.016] - INFO: Scanning for system infection...
[2015.12.27 17:41:40.016] - --------------------------------------------------------------------------------
[2015.12.27 17:41:40.016] -
[2015.12.27 17:41:40.016] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]...
[2015.12.27 17:41:40.031] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]...
[2015.12.27 17:41:40.031] - INFO: Processing classes...
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.063] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0031-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0031-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0032-ABCDEFFEDCBA}]
Re: Kontrola logu HJT
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0031-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0031-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0032-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0032-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0033-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0033-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0034-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0034-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0035-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0035-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0036-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0036-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0037-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0037-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0038-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0038-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0039-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0039-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0040-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0040-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0041-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0041-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0042-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0042-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0043-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0043-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0044-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0044-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0045-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0045-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0046-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0046-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0047-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0047-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0048-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0048-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0049-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0049-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0050-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0050-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0051-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0051-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0052-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0052-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0053-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0053-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0054-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0054-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0055-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0055-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0056-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0056-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0057-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0057-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0058-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0058-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0059-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0059-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0060-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0060-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0061-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0061-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0062-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0062-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0063-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0063-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0064-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0064-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0065-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0065-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0066-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0066-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0067-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0067-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0068-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0068-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0069-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0069-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0070-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0070-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0071-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0071-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0072-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0072-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0073-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0073-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0074-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0074-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0075-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0075-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0076-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0076-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0077-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0077-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0078-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0078-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0079-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0079-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0080-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0080-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0081-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0081-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0082-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0082-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0083-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0083-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0084-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0084-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0085-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0085-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0086-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0086-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0087-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0087-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0088-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0088-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0089-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0089-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0090-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0090-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0091-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0091-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0092-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0092-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0093-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0093-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0094-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0094-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0095-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0095-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0096-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0096-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0097-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0097-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0098-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0098-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0099-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0099-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0031-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0032-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0032-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0033-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0033-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0034-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0034-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0035-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0035-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0036-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0036-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0037-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0037-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0038-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0038-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0039-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0039-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0040-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0040-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0041-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0041-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0042-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0042-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0043-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0043-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0044-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0044-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0045-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0045-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0046-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0046-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0047-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0047-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0048-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0048-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0049-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0049-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0050-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0050-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0051-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0051-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0052-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0052-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0053-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0053-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0054-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0054-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0055-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0055-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0056-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0056-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0057-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0057-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0058-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0058-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0059-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0059-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0060-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0060-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0061-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0061-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0062-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0062-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0063-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0063-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0064-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0064-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0065-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0065-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0066-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0066-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0067-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0067-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0068-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0068-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0069-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0069-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0070-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0070-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0071-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0071-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0072-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0072-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0073-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0073-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0074-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0074-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0075-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0075-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0076-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0076-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0077-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0077-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.078] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0078-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0078-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0079-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0079-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0080-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0080-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0081-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0081-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0082-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0082-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0083-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0083-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0084-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0084-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0085-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0085-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0086-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0086-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0087-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0087-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0088-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0088-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0089-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0089-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0090-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0090-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0091-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0091-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0092-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0092-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0093-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0093-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0094-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0094-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0095-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0095-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0096-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0096-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0097-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0097-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0098-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0098-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0099-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0099-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.094] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.109] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
[2015.12.27 17:41:40.125] - INFO: Processing clsid [\Registry\User\S-1-5-21-860103369-4256068919-2072106398-1000\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}]
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 40 hostů