Been having performance issues with my laptop recently, where my RAM usage builds up slowly over time, even with no programs running. I was told that the amazing people on this forum may be able to help me, so here I am
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17126 BrowserJavaVersion: 10.60.2
Run by Matt at 13:52:41 on 2014-07-10
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.5997.3082 [GMT 2:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Enabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\FBAgent.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Windows\system32\atieclxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\Net4Switch\Net4Switch.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe
C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Windows\System32\rundll32.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Users\Matt\AppData\Local\Akamai\netsession_win.exe
C:\Users\Matt\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Razer\Razer Game Booster\main.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uWindow Title = Internet Explorer, enhanced for Bing and MSN
uDefault_Page_URL = hxxp://asus.msn.com
uProxyOverride = <local>
dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>
mWinlogon: Userinit = userinit.exe,
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
uRun: [Akamai NetSession Interface] "C:\Users\Matt\AppData\Local\Akamai\netsession_win.exe"
uRun: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
mRun: [RemoteControl9] "C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe"
mRun: [UpdatePSTShortCut] "C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Cyberlink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
mRun: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
mRun: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [RazerGameBooster] C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe -autorun
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SRSPRE~1.LNK - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: NameServer = 10.0.0.2
TCP: Interfaces\{8AF79A28-A70A-4268-A5DB-466D5F09CCFB} : DHCPNameServer = 10.0.0.2
TCP: Interfaces\{8AF79A28-A70A-4268-A5DB-466D5F09CCFB}\D4F62747F6E6 : DHCPNameServer = 10.0.0.2
TCP: Interfaces\{8AF79A28-A70A-4268-A5DB-466D5F09CCFB}\E4544574541425 : DHCPNameServer = 41.221.230.35 41.221.230.36
TCP: Interfaces\{ED5A26D1-AE13-4EC7-942A-05A1E49CDB93} : DHCPNameServer = 192.168.1.254
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
x64-Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
x64-Run: [ETDWare] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-4-3 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-4-3 208416]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2013-2-5 1039096]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2013-2-5 423240]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2011-5-7 254528]
R1 RzFilter;RzFilter;C:\Windows\System32\drivers\RzFilter.sys [2013-9-27 74432]
R2 AFBAgent;AFBAgent;C:\Windows\System32\FBAgent.exe [2011-2-13 379520]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-11-7 203776]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-5-26 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-2-5 79184]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-1-4 85328]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-5-26 50344]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-7-3 1809720]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-7-3 860472]
R2 Razer Game Scanner Service;Razer Game Scanner;C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2014-4-29 329920]
R2 RzKLService;RzKLService;C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2013-9-26 105448]
R2 RzMaelstromVADStreamingService;Razer Surround Audio Service;C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe [2014-6-9 4250624]
R2 RzOvlMon;Razer Overlay Subsystem Emergency Service;C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe [2014-4-11 32960]
R2 rzpmgrk;rzpmgrk;C:\Windows\System32\drivers\rzpmgrk.sys [2014-5-21 37184]
R2 rzpnk;rzpnk;C:\Windows\System32\drivers\rzpnk.sys [2014-5-21 129856]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-7-8 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-7-8 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-7-8 171928]
R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\System32\drivers\TurboB.sys [2009-8-7 13784]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-2-13 2314240]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-11-7 115216]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\drivers\ETD.sys [2010-4-13 135560]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2011-2-13 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2010-2-26 158976]
R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2009-8-18 143472]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);C:\Windows\System32\drivers\JME.sys [2010-2-25 115312]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-7-3 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-7-3 122584]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-7-3 63704]
R3 RzDxgk;RzDxgk;C:\Windows\System32\drivers\RzDxgk.sys [2013-9-27 129472]
R3 RZMAELSTROMVADService;Razer Surround Audio Enhancer Service;C:\Windows\System32\drivers\RzMaelstromVAD.sys [2014-5-23 32768]
R3 rzudd;Razer Mouse Driver;C:\Windows\System32\drivers\rzudd.sys [2014-5-19 155816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-4-19 161384]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:\Program Files\BitComet\tools\BitCometService.exe -service --> C:\Program Files\BitComet\tools\BitCometService.exe -service [?]
S3 btusbflt;Bluetooth USB Filter;C:\Windows\System32\drivers\btusbflt.sys [2009-12-14 53800]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2011-2-13 35104]
S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\System32\drivers\ggflt.sys [2014-3-8 14448]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-6-30 111616]
S3 NMgamingmsFltr;USB Optical Mouse;C:\Windows\System32\drivers\NMgamingms.sys [2009-7-24 11264]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-6-30 19456]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;C:\Windows\System32\drivers\SiSG664.sys [2009-6-10 56832]
S3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2014-3-8 155824]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-6-30 56832]
S3 TurboBoost;TurboBoost;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-8-7 118672]
S3 vcd10bus;Virtual CD v10 Bus Enumerator;C:\Windows\System32\drivers\vcd10bus.sys [2012-12-14 40464]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-5-30 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
.
=============== Created Last 30 ================
.
2014-07-10 10:53:56 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1721AB1D-D3D7-4BAC-9A0D-F39E61793E9E}\offreg.dll
2014-07-08 08:58:07 21040 ----a-w- C:\Windows\System32\sdnclean64.exe
2014-07-03 14:47:27 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-07-03 14:47:12 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-07-03 14:47:12 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-07-03 14:47:12 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-07-03 14:47:12 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-03 08:42:47 -------- d-sh--w- C:\found.000
2014-07-02 21:18:35 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-07-02 21:04:00 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2014-07-01 19:11:18 -------- d-----w- C:\Users\Matt\AppData\Local\Macromedia
2014-07-01 19:04:47 -------- d-----w- C:\Users\Matt\AppData\Local\Mozilla
2014-07-01 18:53:02 -------- d-sh--w- C:\Users\Matt\AppData\Local\EmieUserList
2014-07-01 18:53:02 -------- d-sh--w- C:\Users\Matt\AppData\Local\EmieSiteList
2014-07-01 10:16:51 10779000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1721AB1D-D3D7-4BAC-9A0D-F39E61793E9E}\mpengine.dll
2014-07-01 10:03:49 6574592 ----a-w- C:\Windows\System32\mstscax.dll
2014-07-01 10:03:49 5694464 ----a-w- C:\Windows\SysWow64\mstscax.dll
2014-07-01 10:00:02 3178496 ----a-w- C:\Windows\System32\rdpcorets.dll
2014-07-01 10:00:02 16384 ----a-w- C:\Windows\System32\RdpGroupPolicyExtension.dll
2014-07-01 09:59:18 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-07-01 09:02:27 -------- d-s---w- C:\Windows\System32\CompatTel
2014-06-30 16:24:58 -------- d-----w- C:\Windows\System32\MRT
2014-06-30 16:22:23 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe
2014-06-30 16:22:23 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2014-06-30 16:22:19 12625920 ----a-w- C:\Windows\System32\wmploc.DLL
2014-06-30 16:22:18 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL
2014-06-30 16:06:35 -------- d-----w- C:\Windows\Migration
2014-06-30 15:24:43 44544 ----a-w- C:\Windows\System32\TsUsbGDCoInstaller.dll
2014-06-30 15:06:44 19456 ----a-w- C:\Windows\System32\drivers\rdpvideominiport.sys
2014-06-30 15:06:39 192000 ----a-w- C:\Windows\SysWow64\rdpendp_winip.dll
2014-06-30 15:06:38 243200 ----a-w- C:\Windows\System32\rdpudd.dll
2014-06-30 15:06:38 228864 ----a-w- C:\Windows\System32\rdpendp_winip.dll
2014-06-30 12:59:08 5550016 ----a-w- C:\Windows\System32\ntoskrnl.exe
2014-06-30 12:58:58 6656 ----a-w- C:\Windows\SysWow64\apisetschema.dll
2014-06-30 12:58:58 6656 ----a-w- C:\Windows\System32\apisetschema.dll
2014-06-30 12:58:24 197120 ----a-w- C:\Windows\System32\credui.dll
2014-06-30 12:58:24 1930752 ----a-w- C:\Windows\System32\authui.dll
2014-06-30 12:58:24 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2014-06-30 12:58:24 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2014-06-30 12:58:24 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2014-06-30 12:58:24 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2014-06-30 12:54:26 3928064 ----a-w- C:\Windows\System32\d2d1.dll
2014-06-30 12:54:26 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2014-06-30 12:54:26 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll
2014-06-30 12:54:26 1987584 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2014-06-30 12:53:08 27584 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2014-06-30 12:53:08 274880 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
2014-06-30 12:53:08 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll
2014-06-30 12:53:08 2048 ----a-w- C:\Windows\System32\iologmsg.dll
2014-06-30 12:53:08 190912 ----a-w- C:\Windows\System32\drivers\storport.sys
2014-06-30 12:51:19 506368 ----a-w- C:\Windows\System32\aepdu.dll
2014-06-30 12:51:19 424448 ----a-w- C:\Windows\System32\aeinv.dll
2014-06-30 12:48:35 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-06-30 12:47:59 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2014-06-30 12:47:59 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2014-06-30 12:47:59 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2014-06-30 12:47:59 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2014-06-30 12:47:59 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2014-06-30 12:47:59 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2014-06-30 12:47:59 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2014-06-30 12:47:39 465920 ----a-w- C:\Windows\System32\WMPhoto.dll
2014-06-30 12:47:39 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2014-06-30 12:47:14 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2014-06-30 12:46:28 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2014-06-30 12:45:13 624128 ----a-w- C:\Windows\System32\qedit.dll
2014-06-30 12:45:13 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2014-06-30 12:45:12 228864 ----a-w- C:\Windows\System32\wwansvc.dll
2014-06-30 12:43:45 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2014-06-30 12:43:45 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-06-30 12:43:45 185344 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2014-06-30 12:43:45 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2014-06-30 12:43:45 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys
2014-06-30 12:43:45 109824 ----a-w- C:\Windows\System32\drivers\USBAUDIO.sys
2014-06-30 12:43:45 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2014-06-30 12:43:43 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
2014-06-30 12:43:43 335360 ----a-w- C:\Windows\System32\msieftp.dll
2014-06-30 12:43:43 301568 ----a-w- C:\Windows\SysWow64\msieftp.dll
2014-06-30 12:40:26 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2014-06-30 12:40:14 202752 ----a-w- C:\Windows\System32\scrrun.dll
2014-06-30 12:40:14 168960 ----a-w- C:\Windows\System32\wscript.exe
2014-06-30 12:40:14 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll
2014-06-30 12:40:14 156160 ----a-w- C:\Windows\System32\cscript.exe
2014-06-30 12:40:14 150016 ----a-w- C:\Windows\System32\wshom.ocx
2014-06-30 12:40:14 141824 ----a-w- C:\Windows\SysWow64\wscript.exe
2014-06-30 12:40:14 126976 ----a-w- C:\Windows\SysWow64\cscript.exe
2014-06-30 12:40:14 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx
2014-06-30 12:39:08 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2014-06-30 12:39:07 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2014-06-30 12:39:07 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2014-06-30 12:39:07 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2014-06-30 12:38:57 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2014-06-30 12:38:57 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2014-06-30 12:38:57 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2014-06-30 12:38:57 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2014-06-30 12:38:57 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2014-06-30 12:36:47 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2014-06-30 12:35:14 -------- d-----w- C:\Users\Matt\AppData\Local\Adobe
2014-06-30 12:22:42 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-06-29 21:52:01 -------- d-----w- C:\ProgramData\Malwarebytes
2014-06-19 11:32:00 -------- d-----w- C:\Program Files (x86)\Microsoft WSE
2014-06-15 11:38:15 -------- d-----w- C:\Users\Matt\AppData\Roaming\Curse
.
==================== Find3M ====================
.
2014-07-10 10:54:00 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-07-10 10:54:00 699056 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-07-05 19:23:59 45056 ----a-w- C:\Windows\System32\acovcnt.exe
2014-06-09 09:49:00 69632 ----a-w- C:\Windows\System32\DriverInstallCA.dll
2014-06-09 09:49:00 245760 ----a-w- C:\Windows\System32\DriverInstallCACMD.exe
2014-06-09 09:49:00 136704 ----a-w- C:\Windows\SysWow64\RzVAD.dll
2014-05-29 05:32:14 80384 ----a-w- C:\Windows\System32\RazerCoinstaller.dll
2014-05-26 07:31:00 85328 ----a-w- C:\Windows\System32\drivers\aswstm.sys
2014-05-26 07:31:00 1039096 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2014-05-26 07:30:20 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2014-05-26 07:30:20 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2014-05-26 07:30:20 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2014-05-26 07:30:20 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2014-05-26 07:30:20 208416 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2014-05-26 07:30:19 43152 ----a-w- C:\Windows\avastSS.scr
2014-05-24 02:33:58 864256 ----a-w- C:\Windows\SysWow64\rzdevicedll.dll
2014-05-24 02:33:56 325120 ----a-w- C:\Windows\SysWow64\rzaudiodll.dll
2014-05-23 10:34:46 32768 ----a-w- C:\Windows\System32\drivers\RzMaelstromVAD.sys
2014-05-19 06:47:28 155816 ----a-w- C:\Windows\System32\drivers\rzudd.sys
2014-05-19 06:26:50 89088 ----a-w- C:\Windows\SysWow64\rzdevinfo.dll
2014-05-19 06:26:50 155136 ----a-w- C:\Windows\SysWow64\rztouchdll.dll
2014-05-19 06:26:46 117248 ----a-w- C:\Windows\SysWow64\rzdisplaydll.dll
2014-04-29 21:41:35 37184 ----a-w- C:\Windows\System32\drivers\rzpmgrk.sys
2014-04-25 18:45:43 129856 ----a-w- C:\Windows\System32\drivers\rzpnk.sys
2014-04-25 02:34:59 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-04-25 02:06:17 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-04-12 02:22:05 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-04-12 02:22:05 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 02:19:38 29184 ----a-w- C:\Windows\System32\sspisrv.dll
2014-04-12 02:19:38 136192 ----a-w- C:\Windows\System32\sspicli.dll
2014-04-12 02:19:37 28160 ----a-w- C:\Windows\System32\secur32.dll
2014-04-12 02:19:32 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-04-12 02:19:05 31232 ----a-w- C:\Windows\System32\lsass.exe
2014-04-12 02:12:06 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-04-12 02:10:56 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
.
============= FINISH: 13:53:31.87 ===============
aswMBR version 1.0.1.2041 Copyright(c) 2014 AVAST Software
Run date: 2014-07-10 13:09:56
-----------------------------
13:09:56.539 OS Version: Windows x64 6.1.7601 Service Pack 1
13:09:56.539 Number of processors: 4 586 0x2505
13:09:56.541 ComputerName: ORANGE-SODA UserName: Matt
13:09:58.678 Initialize success
13:09:58.678 VM: initialized successfully
13:09:58.683 VM: outdated driver version !
13:10:03.159 AVAST engine defs: 14071000
13:10:09.176 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
13:10:09.181 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
13:10:09.333 Disk 0 MBR read successfully
13:10:09.336 Disk 0 MBR scan
13:10:09.339 Disk 0 Windows 7 default MBR code
13:10:09.343 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 22000 MB offset 64
13:10:09.361 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 122569 MB offset 45056064
13:10:09.365 Disk 0 default boot code
13:10:09.369 Disk 0 Partition - 00 0F Extended LBA 332370 MB offset 296078203
13:10:09.401 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 332369 MB offset 296080251
13:10:09.417 Disk 0 scanning C:\Windows\system32\drivers
13:10:20.113 Service scanning
13:10:54.196 Modules scanning
13:10:54.207 Disk 0 trace - called modules:
13:10:54.254 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys
13:10:54.259 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006513060]
13:10:54.264 3 CLASSPNP.SYS[fffff88001afc43f] -> nt!IofCallDriver -> [0xfffffa80062d3a90]
13:10:54.272 5 ACPI.sys[fffff88000eff7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80062d9050]
13:10:55.245 AVAST engine scan C:\Windows
13:10:58.913 AVAST engine scan C:\Windows\system32
13:17:20.323 AVAST engine scan C:\Windows\system32\drivers
13:17:34.860 AVAST engine scan C:\Users\Matt
13:31:44.790 AVAST engine scan C:\ProgramData
13:33:52.427 Scan finished successfully
13:34:16.824 Disk 0 MBR has been saved successfully to "C:\Users\Matt\Desktop\MBR.dat"
13:34:16.829 The log file has been saved successfully to "C:\Users\Matt\Desktop\aswMBR.txt"
Search results from Spybot - Search & Destroy
7/10/2014 1:00:19 PM
Scan took 00:35:26.
38 items found.
Macromedia.FlashPlayer.Cookies: [SBI $1EF45977] Text file (File, nothing done)
C:\Users\Matt\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\WCEDE227\kaptcha.com\logo.swf\k.sol
Properties.size=0
Properties.md5=D41D8CD98F00B204E9800998ECF8427E
DoubleClick: [SBI $4E2AF2AC] Tracking cookie (Google Chrome: Default) (Browser: Cookie, nothing done)
Statcounter: [SBI $4E2AF2AC] Tracking cookie (Google Chrome: Default) (Browser: Cookie, nothing done)
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
MS Media Player: [SBI $5C51E349] Client ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\MediaPlayer\Player\Settings\Client ID
MS Direct3D: [SBI $7FB7B83F] Most recent application (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Direct3D\MostRecentApplication\Name
MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Direct3D\MostRecentApplication\Name
MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Direct3D\MostRecentApplication\Name
MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Direct3D\MostRecentApplication\Name
MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\DirectInput\MostRecentApplication\Name
MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\DirectInput\MostRecentApplication\Id
Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources
Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources
Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList
Windows.OpenWith: [SBI $691C1B44] Open with list - .BIN extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BIN\OpenWithList
Windows.OpenWith: [SBI $A1C94E79] Open with list - .BMP extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BMP\OpenWithList
Windows.OpenWith: [SBI $99432203] Open with list - .CFG extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CFG\OpenWithList
Windows.OpenWith: [SBI $7E93AD81] Open with list - .CSS extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CSS\OpenWithList
Windows.OpenWith: [SBI $F34FE1D0] Open with list - .CUE extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CUE\OpenWithList
Windows Explorer: [SBI $AA0766B5] Stream history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU
Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done)
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows Media\WMSDK\General\ComputerName
Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows Media\WMSDK\General\ComputerName
Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows Media\WMSDK\General\UniqueID
Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows Media\WMSDK\General\UniqueID
Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done)
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber
Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done)
HKEY_USERS\S-1-5-21-2609389158-545349396-2406316527-1000\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber
Cookie: [SBI $49804B54] Browser: Cookie (6) (Browser: Cookie, nothing done)
Cache: [SBI $49804B54] Browser: Cache (192) (Browser: Cache, nothing done)
History: [SBI $49804B54] Browser: History (8) (Browser: History, nothing done)
Cookie: [SBI $49804B54] Browser: Cookie (348) (Browser: Cookie, nothing done)
History: [SBI $49804B54] Browser: History (2999) (Browser: History, nothing done)