0% found this document useful (0 votes)

231 views18 pages

Analysis of usb2ser.sys in OTL Log

This document provides information about processes, modules, services, and drivers running on a Windows computer. It lists 50 processes, 17 modules, 28 services, and 1 driver service, along with details like file paths, sizes, dates, and states. The computer is identified as a Windows 7 NTWorkstation with 1.93GB of RAM located in the United States.

Uploaded by

anhnhamoi

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

231 views18 pages

Analysis of usb2ser.sys in OTL Log

Uploaded by

anhnhamoi

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

OTL logfile created on: 4/13/2014 [Link] PM - Run 1

OTL by OldTimer - Version [Link]

Folder = C:\Users\Huan\Downloads\Programs
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyy
y
1.93 Gb Total Physical Memory | 0.61 Gb Available Physical Memory | 31.71% Memor
y free
3.85 Gb Paging File | 1.94 Gb Available in Paging File | 50.46% Paging File free
Paging file location(s): ?:\[Link] [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Fil
es
Drive C: | 78.13 Gb Total Space | 27.40 Gb Free Space | 35.07% Space Free | Part
ition Type: NTFS
Drive D: | 154.85 Gb Total Space | 16.02 Gb Free Space | 10.35% Space Free | Par
tition Type: NTFS
Drive E: | 164.42 Gb Total Space | 56.62 Gb Free Space | 34.44% Space Free | Par
tition Type: NTFS
Computer Name: HUAN-PC | User Name: Huan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelis
t: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2014/04/13 [Link] | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\User
s\Huan\Downloads\Programs\[Link]
PRC - [2014/04/02 [Link] | 000,841,032 | ---- | M] (Google Inc.) -- C:\Program
Files\Google\Chrome\Application\[Link]
PRC - [2014/03/22 [Link] | 003,829,328 | ---- | M] (Tonec Inc.) -- C:\Program
Files\Internet Download Manager\[Link]
PRC - [2013/11/07 [Link] | 000,269,848 | ---- | M] (Tonec Inc.) -- C:\Program
Files\Internet Download Manager\[Link]
PRC - [2013/04/30 [Link] | 000,453,632 | ---- | M] (AMD) -- C:\Windows\System3
2\[Link]
PRC - [2013/04/30 [Link] | 000,217,088 | ---- | M] (AMD) -- C:\Windows\System3
2\[Link]
PRC - [2012/11/30 [Link] | 000,271,360 | ---- | M] (Microsoft Corporation) -C:\Windows\System32\[Link]
PRC - [2012/11/12 [Link] | 000,657,504 | ---- | M] () -- C:\ProgramData\fast c
onnect\OnlineUpdate\[Link]
PRC - [2012/09/05 [Link] | 000,271,808 | ---- | M] (McAfee, Inc.) -- C:\Progra
m Files\McAfee Security Scan\3.0.285\[Link]
PRC - [2012/08/01 [Link] | 002,345,592 | ---- | M] (AVG Technologies CZ, s.r.o
.) -- C:\Program Files\AVG\AVG10\[Link]
PRC - [2012/07/19 [Link] | 000,821,840 | ---- | M] (ABBYY) -- C:\Program Files
\ABBYY FineReader 11\[Link]
PRC - [2012/01/31 [Link] | 007,391,072 | ---- | M] (AVG Technologies CZ, s.r.o
.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\[Link]
PRC - [2011/09/09 [Link] | 001,082,208 | ---- | M] (AVG Technologies CZ, s.r.o
.) -- C:\Program Files\AVG\AVG10\[Link]
PRC - [2011/08/18 [Link] | 000,659,296 | ---- | M] (AVG Technologies CZ, s.r.o
.) -- C:\Program Files\AVG\AVG10\[Link]
PRC - [2011/05/23 [Link] | 000,657,248 | ---- | M] (AVG Technologies CZ, s.r.o
.) -- C:\Program Files\AVG\AVG10\[Link]
PRC - [2011/03/28 [Link] | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o
.) -- C:\Program Files\AVG\AVG10\[Link]

PRC - [2011/03/16 [Link] | 001,025,888 | ---- | M] (AVG Technologies CZ, s.r.o

.) -- C:\Program Files\AVG\AVG10\[Link]
PRC - [2011/03/14 [Link] | 000,271,712 | ---- | M] () -- C:\ProgramData\Dataca
rdService\[Link]
PRC - [2011/03/14 [Link] | 000,236,384 | ---- | M] (Huawei Technologies Co., L
td.) -- C:\ProgramData\DatacardService\[Link]
PRC - [2011/03/09 [Link] | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o
.) -- C:\Program Files\AVG\AVG10\[Link]
PRC - [2011/02/25 [Link] | 002,616,320 | ---- | M] (Microsoft Corporation) -C:\Windows\[Link]
PRC - [2011/02/10 [Link] | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\
AVG10\Identity Protection\Agent\Bin\[Link]
PRC - [2011/02/08 [Link] | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o
.) -- C:\Program Files\AVG\AVG10\[Link]
PRC - [2011/02/08 [Link] | 000,750,432 | ---- | M] (AVG Technologies CZ, s.r.o
.) -- C:\Program Files\AVG\AVG10\[Link]
PRC - [2010/11/20 [Link] | 000,049,152 | ---- | M] (Microsoft Corporation) -C:\Windows\System32\[Link]
PRC - [2010/07/01 [Link] | 002,533,400 | ---- | M] (Intel Corporation) -- C:\P
rogram Files\Intel\Intel(R) Management Engine Components\UNS\[Link]
PRC - [2010/07/01 [Link] | 000,325,656 | ---- | M] (Intel Corporation) -- C:\P
rogram Files\Intel\Intel(R) Management Engine Components\LMS\[Link]
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2014/04/02 [Link] | 000,390,472 | ---- | M] () -- C:\Program
le\Chrome\Application\34.0.1847.116\[Link]
MOD - [2014/04/02 [Link] | 013,691,720 | ---- | M] () -- C:\Program
le\Chrome\Application\34.0.1847.116\PepperFlash\[Link]
MOD - [2014/04/02 [Link] | 004,081,480 | ---- | M] () -- C:\Program
le\Chrome\Application\34.0.1847.116\[Link]
MOD - [2014/04/02 [Link] | 000,674,632 | ---- | M] () -- C:\Program
le\Chrome\Application\34.0.1847.116\[Link]
MOD - [2014/04/02 [Link] | 000,093,000 | ---- | M] () -- C:\Program
le\Chrome\Application\34.0.1847.116\[Link]
MOD - [2014/04/02 [Link] | 001,647,432 | ---- | M] () -- C:\Program
le\Chrome\Application\34.0.1847.116\[Link]
MOD - [2014/04/02 [Link] | 000,065,352 | ---- | M] () -- C:\Program
le\Chrome\Application\34.0.1847.116\chrome_elf.dll
MOD - [2011/03/17 [Link] | 004,297,568 | ---- | M] () -- C:\Program
on Files\microsoft shared\OFFICE14\Cultures\[Link]
MOD - [2011/02/10 [Link] | 001,148,256 | ---- | M] () -- C:\Program
AVG10\Identity Protection\Agent\Bin\[Link]
MOD - [2010/03/24 [Link] | 008,794,464 | ---- | M] () -- C:\Program
osoft Office\Office14\1033\[Link]

Files\Goog
Files\Goog
Files\Goog
Files\Goog
Files\Goog
Files\Goog
Files\Goog
Files\Comm
Files\AVG\
Files\Micr

[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\AVG Secur
e Search\vToolbarUpdater\18.0.5\[Link] -- (vToolbarUpdater18.0.5)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Laflurla\updateLaflurl
[Link] -- (Update Laflurla)
SRV - [2014/04/13 [Link] | 000,257,712 | ---- | M] (Adobe Systems Incorporated
) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateS
[Link] -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/04/12 [Link] | 000,385,024 | ---- | M] () [Auto | Stopped] -- C:\P
rogram Files\Shield\[Link] -- (ShieldClientService)
SRV - [2014/04/12 [Link] | 000,172,600 | ---- | M] (Horizon DataSys Inc) [Auto

| Stopped] -- C:\Program Files\Shield\[Link] -- (ShdServ)

SRV - [2014/03/15 [Link] | 000,119,408 | ---- | M] (Mozilla Foundation) [On_De
mand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservi
[Link] -- (MozillaMaintenance)
SRV - [2013/10/18 [Link] | 001,343,400 | ---- | M] (Microsoft Corporation) [On
_Demand | Stopped] -- C:\Windows\System32\Wat\[Link] -- (WatAdminSvc)
SRV - [2013/04/30 [Link] | 000,217,088 | ---- | M] (AMD) [Auto | Running] -- C
:\Windows\System32\[Link] -- (AMD External Events Utility)
SRV - [2012/11/12 [Link] | 000,657,504 | ---- | M] () [Auto | Stopped] -- C:\P
rogram Files\fast connect\UpdateDog\[Link] -- (fast connect. RunOuc)
SRV - [2012/09/05 [Link] | 000,234,776 | ---- | M] (McAfee, Inc.) [On_Demand |
Stopped] -- C:\Program Files\McAfee Security Scan\3.0.285\[Link] -- (McCom
ponentHostService)
SRV - [2012/07/19 [Link] | 000,821,840 | ---- | M] (ABBYY) [Auto | Running] -C:\Program Files\ABBYY FineReader 11\[Link] -- ([Link]
[Link].11.0)
SRV - [2012/01/31 [Link] | 007,391,072 | ---- | M] (AVG Technologies CZ, s.r.o
.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\
[Link] -- (AVGIDSAgent)
SRV - [2011/11/10 [Link] | 000,167,264 | ---- | M] () [On_Demand | Stopped] -C:\Program Files\AVG\AVG10\Toolbar\[Link] -- (AVG Security Toolbar S
ervice)
SRV - [2011/03/14 [Link] | 000,271,712 | ---- | M] () [Auto | Running] -- C:\P
rogramData\DatacardService\[Link] -- ([Link])
SRV - [2011/03/09 [Link] | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o
.) [Auto | Running] -- C:\Program Files\AVG\AVG10\[Link] -- (avgfws)
SRV - [2011/02/08 [Link] | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o
.) [Auto | Running] -- C:\Program Files\AVG\AVG10\[Link] -- (avgwd)
SRV - [2010/07/01 [Link] | 002,533,400 | ---- | M] (Intel Corporation) [Auto |
Running] -- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UN
[Link] -- (UNS)
SRV - [2010/07/01 [Link] | 000,325,656 | ---- | M] (Intel Corporation) [Auto |
Running] -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LM
[Link] -- (LMS)
SRV - [2010/03/25 [Link] | 030,969,208 | ---- | M] (Microsoft Corporation) [On
_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\[Link] -- (
Microsoft SharePoint Workspace Audit Service)
SRV - [2009/07/14 [Link] | 000,025,088 | ---- | M] (Microsoft Corporation) [On
_Demand | Stopped] -- C:\Windows\System32\[Link] -- (SensrSvc)
SRV - [2009/07/14 [Link] | 001,004,544 | ---- | M] (Microsoft Corporation) [On
_Demand | Stopped] -- C:\Windows\System32\[Link] -- (PeerDistSvc)
SRV - [2009/07/14 [Link] | 000,680,960 | ---- | M] (Microsoft Corporation) [On
_Demand | Stopped] -- C:\Program Files\Windows Defender\[Link] -- (WinDefend)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel
[Link] -- (VMnetAdapter)
DRV - File not found [Kernel
RS\[Link] -- (vmci)
DRV - File not found [Kernel
sys -- (VGPU)
DRV - File not found [Kernel
.sys -- (tsusbhub)
DRV - File not found [Kernel
[Link] -- (Synth3dVsc)
DRV - File not found [Kernel
sys -- (PSKYMDM)
DRV - File not found [Kernel

| On_Demand | Stopped] -- system32\DRIVERS\vmnetada

.sys -- (PSKTOBEX)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\PSKTBUS.
sys -- (PSKTBUS)
DRV - [2014/04/12 [Link] | 000,062,008 | ---- | M] (Horizon DataSys Inc) [Kern
el | Boot | Running] -- C:\Windows\System32\drivers\[Link] -- (Shield)
DRV - [2014/04/12 [Link] | 000,024,632 | ---- | M] (Horizon DataSys Inc) [File
_System | Boot | Running] -- C:\Windows\System32\drivers\[Link] -- (Shieldf
)
DRV - [2014/04/12 [Link] | 000,023,096 | ---- | M] (Horizon DataSys Inc) [Kern
el | Boot | Running] -- C:\Windows\System32\drivers\[Link] -- (Shieldm)
DRV - [2014/04/12 [Link] | 000,021,560 | ---- | M] (Horizon DataSys Inc) [Kern
el | Boot | Running] -- C:\Windows\System32\drivers\[Link] -- (Shdbus)
DRV - [2014/03/22 [Link] | 000,042,272 | ---- | M] (AVG Technologies) [Kernel
| System | Running] -- C:\Windows\System32\drivers\[Link] -- (avgtp)
DRV - [2014/02/24 [Link] | 000,025,328 | ---- | M] (Synaptics Incorporated) [K
ernel | On_Demand | Running] -- C:\Windows\System32\drivers\Smb_driver_Intel.sys
-- (SmbDrvI)
DRV - [2013/12/19 [Link] | 000,077,824 | ---- | M] (Advanced Micro Devices) [K
ernel | On_Demand | Running] -- C:\Windows\System32\drivers\[Link] -- (Ati
HDAudioService)
DRV - [2013/12/09 [Link] | 010,375,680 | ---- | M] (Intel Corporation) [Kernel
| On_Demand | Running] -- C:\Windows\System32\drivers\[Link] -- (NETwNs32
)
DRV - [2013/11/30 [Link] | 000,021,432 | ---- | M] (Christian Gulden) [Kernel
| On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (pimou)
DRV - [2013/11/28 [Link] | 000,108,000 | ---- | M] (Tonec Inc.) [Kernel | Auto
| Running] -- C:\Windows\System32\drivers\[Link] -- (IDMWFP)
DRV - [2013/10/01 [Link] | 000,021,432 | ---- | M] (Christian Gulden) [Kernel
| On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (pikbd)
DRV - [2013/08/27 [Link] | 000,209,112 | ---- | M] (Realtek Semiconductor Corp
.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\[Link] -(RSUSBSTOR)
DRV - [2013/07/18 [Link] | 000,110,280 | ---- | M] (Qualcomm Atheros Co., Ltd.
) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\[Link] -(L1C)
DRV - [2013/04/30 [Link] | 010,070,016 | ---- | M] (Advanced Micro Devices, In
c.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] - (atikmdag)
DRV - [2013/04/30 [Link] | 010,070,016 | ---- | M] (Advanced Micro Devices, In
c.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\[Link] - (amdkmdag)
DRV - [2013/04/30 [Link] | 000,290,304 | ---- | M] (Advanced Micro Devices, In
c.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\[Link] - (amdkmdap)
DRV - [2013/03/21 [Link] | 000,068,480 | ---- | M] (MediaTek Inc.) [Kernel | O
n_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (wdf_usb)
DRV - [2013/03/14 [Link] | 000,015,968 | ---- | M] (Advanced Micro Devices, In
c.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\[Link] -- (am
dkmafd)
DRV - [2013/01/25 [Link] | 000,095,232 | ---- | M] (Huawei Technologies Co., L
td.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.s
ys -- (ew_hwusbdev)
DRV - [2013/01/23 [Link] | 000,379,904 | ---- | M] (Huawei Technologies Co., L
td.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link]
-- (ewusbmbb)
DRV - [2013/01/23 [Link] | 000,199,296 | ---- | M] (Huawei Technologies Co., L
td.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link]
-- (hwdatacard)
DRV - [2013/01/23 [Link] | 000,077,696 | ---- | M] (Huawei Technologies Co., L
td.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_jubusenum.

sys -- (huawei_enumerator)
DRV - [2012/12/13 [Link] | 000,172,544 | ---- | M] (MediaTek Inc.) [Kernel | O
n_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (mtkmbim)
DRV - [2012/11/12 [Link] | 000,255,968 | ---- | M] (AVG Technologies CZ, s.r.o
.) [Kernel | System | Running] -- C:\Windows\System32\drivers\[Link] -- (A
vgldx86)
DRV - [2012/06/18 [Link] | 000,016,000 | ---- | M] (SysNucleus) [Kernel | On_D
emand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (udsstub)
DRV - [2011/05/27 [Link] | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o
. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.s
ys -- (AVGIDSDriver)
DRV - [2011/04/05 [Link] | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o
.) [Kernel | System | Running] -- C:\Windows\System32\drivers\[Link] -- (Av
gtdix)
DRV - [2011/03/25 [Link] | 000,075,776 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (dg_ks
udbus)
DRV - [2011/03/16 [Link] | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o
.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\[Link] -(Avgrkx86)
DRV - [2011/03/01 [Link] | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o
.) [File_System | System | Running] -- C:\Windows\System32\drivers\[Link]
-- (Avgmfx86)
DRV - [2011/02/22 [Link] | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o
. ) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\[Link] -- (AV
GIDSEH)
DRV - [2011/02/10 [Link] | 000,021,968 | ---- | M] (AVG Technologies CZ, s.r.o
. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\[Link]
-- (AVGIDSShim)
DRV - [2011/02/10 [Link] | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o
. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.s
ys -- (AVGIDSFilter)
DRV - [2010/11/20 [Link] | 000,175,360 | ---- | M] (Microsoft Corporation) [Ke
rnel | Boot | Running] -- C:\Windows\System32\drivers\[Link] -- (vmbus)
DRV - [2010/11/20 [Link] | 000,040,704 | ---- | M] (Microsoft Corporation) [Ke
rnel | Boot | Running] -- C:\Windows\System32\drivers\[Link] -- (storflt)
DRV - [2010/11/20 [Link] | 000,028,032 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (storv
sc)
DRV - [2010/11/20 [Link] | 000,052,224 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (TsUs
bFlt)
DRV - [2010/11/20 [Link] | 000,015,872 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link]
-- (RdpVideoMiniport)
DRV - [2010/11/20 [Link] | 000,035,968 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (WinUsb
)
DRV - [2010/11/20 [Link] | 000,017,920 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (VMBu
sHID)
DRV - [2010/11/20 [Link] | 000,005,632 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (s3cap
)
DRV - [2010/11/04 [Link] | 000,102,728 | ---- | M] (Matrox Graphics Inc.) [Ker
nel | Boot | Running] -- C:\Windows\System32\drivers\[Link] -- (MxEFUF)
DRV - [2010/07/12 [Link] | 000,054,112 | ---- | M] (AVG Technologies CZ, s.r.o
.) [Kernel | System | Running] -- C:\Windows\System32\drivers\[Link] -- (A
vgfwfd)
DRV - [2010/01/29 [Link] | 000,082,320 | ---- | M] (EZB Systems, Inc.) [File_S

ystem | System | Running] -- C:\Program Files\UltraISO\drivers\[Link] -- (

ISODrive)
DRV - [2009/09/17 [Link] | 000,041,088 | ---- | M] (Intel Corporation) [Kernel
| On_Demand | Running] -- C:\Windows\System32\drivers\[Link] -- (HECI)
DRV - [2007/07/07 [Link] | 000,026,120 | ---- | M] (Rainbow Technologies Inc.)
[Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\[Link] -- (
Sntnlusb)
DRV - [2007/07/07 [Link] | 000,076,288 | ---- | M] (Rainbow Technologies, Inc.
) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\[Link] -- (Sent
inel)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link]
[Link]/?ilc=8
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [Link]
[Link]/?ilc=8
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http:/
/[Link]/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [Link]
[Link]/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
[Link]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache Ac
ceptLangs = en-us
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http:/
/[Link]/search?FORM=VE3D01&q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes\{11C7F47B-2F8C-4EF7-9ED3-DBE991EF18BA}: "URL" = http:/
/[Link]/[Link]?q={searchTerms}&SearchSource=4&ctid=CT250409
1&CUI=UN77121078141042375&UM=1
IE - HKCU\..\SearchScopes\{C4925EB0-BE5D-4EAD-AB0B-3E244065604F}: "URL" = http:/
/[Link]/serp?guid={E09F01A6-3E7D-471A-A105-C0545FD5D094}&action=def
ault_search&serpv=22&k={searchTerms}
IE - HKCU\..\SearchScopes\{C71918FA-8DBB-4B22-997C-223B152F3535}: "URL" = http:/
/[Link]/results?src=tb&id=smartbar&g=&q={searchTerms}
IE - HKCU\..\SearchScopes\{D86148B2-F270-49A7-9378-C8498CF1E18F}: "URL" = http:/
/[Link]/route/?d=4b3d2cf0&i=23&tp=chrome&q={searchTerms}&lng={language}&
ychte=us&nt=1
IE - HKCU\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http:/
/[Link]/search?p={searchTerms}&fr=tightropetb&type=10809
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEna
ble" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOve
rride" = *.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxySer
ver" = [Link]:808
[color=#E56717]========== FireFox ==========[/color]
FF - [Link]..[Link]: "[Link]"
FF - [Link]..[Link]: %7B972ce4c6-7e08-4474-a285-3208198ce6fd
%7D:28.0

FF - [Link] - File not found

FF - HKLM\Software\MozillaPlugins\@[Link]/FlashPlayer: C:\Windows\system32\Ma
cromed\Flash\NPSWF32_13_0_0_182.dll ()
FF - HKLM\Software\MozillaPlugins\@[Link]/Foxit PhantomPDF Plugin,ver
sion=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit PhantomPDF\plugi
ns\[Link] (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@[Link]/Foxit PhantomPDF Plugin,ver
sion=1.0,application/[Link]: C:\Program Files\Foxit Software\Foxit PhantomPDF\p
lugins\[Link] (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@[Link]/Foxit Reader Plugin,version
=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFox
[Link] (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@[Link]/Foxit Reader Plugin,version
=1.0,application/[Link]: C:\Program Files\Foxit Software\Foxit Reader\plugins\n
[Link] (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@[Link]/DTPlugin,version=10.45.2: C:\Program
Files\Java\jre7\bin\dtplugin\[Link] (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@[Link]/JavaPlugin,version=10.45.2: C:\Progr
am Files\Java\jre7\bin\plugin2\[Link] (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@[Link]/YahooMessengerStatePlugin
;version=[Link]: C:\Program Files\Yahoo!\Shared\[Link] (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@[Link]/GENUINE: disabled File not foun
d
FF - HKLM\Software\MozillaPlugins\@[Link]/OfficeAuthz,version=14.0: C:\PR
OGRA~1\MICROS~2\Office14\[Link] (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@[Link]/SharePoint,version=14.0: C:\PRO
GRA~1\MICROS~2\Office14\[Link] (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@[Link]/Google Update;version=3: C:\
Program Files\Google\Update\[Link]\[Link] (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@[Link]/Google Update;version=9: C:\
Program Files\Google\Update\[Link]\[Link] (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@[Link]/Mathematica: C:\Program Files\Com
mon Files\Wolfram Research\Browser\8.0.1.2063897\[Link] (Wolfram Resea
rch, Inc.)
FF - HKCU\Software\MozillaPlugins\@[Link]/GoogleTalkPlugin: C:\Users\Hu
an\AppData\Roaming\Mozilla\plugins\[Link] (Google)
FF - HKCU\Software\MozillaPlugins\@[Link]/O1DPlugin: C:\Users\Huan\AppD
ata\Roaming\Mozilla\plugins\[Link] (Google)
FF - HKCU\Software\MozillaPlugins\@[Link]/Google Update;version=3: C:\
Users\Huan\AppData\Local\Google\Update\[Link]\[Link] (Google Inc.
)
FF - HKCU\Software\MozillaPlugins\@[Link]/Google Update;version=9: C:\
Users\Huan\AppData\Local\Google\Update\[Link]\[Link] (Google Inc.
)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be
-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2013/10/18 [Link] |
000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 28.0\extensions\\Compon
ents: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 28.0\extensions\\Plugin
s: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetd
[Link]: C:\Users\Huan\AppData\Roaming\IDM\idmmzcc5 [2014/03/22 11:39
:43 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@interne
[Link]: C:\Users\Huan\AppData\Roaming\IDM\idmmzcc5 [2014/03/22 11:
39:43 | 000,000,000 | ---D | M]

[2014/04/12 [Link] | 000,000,000 | ---D | M] (No name found) -- C:\Users\Huan\

AppData\Roaming\Mozilla\Extensions
[2014/04/12 [Link] | 000,000,000 | ---D | M] (No name found) -- C:\Users\Huan\
AppData\Roaming\Mozilla\Firefox\Profiles\[Link]\extensions
[2014/03/26 [Link] | 000,000,000 | ---D | M] (No name found) -- C:\Program Fil
es\Mozilla Firefox\extensions
[2014/04/12 [Link] | 000,000,000 | ---D | M] (No name found) -- C:\Program Fil
es\Mozilla Firefox\browser\extensions
[2014/04/12 [Link] | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Moz
illa Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[color=#E56717]========== Chrome ==========[/color]
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerm
s}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{go
ogle:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{g
oogle:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMargi
nParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{goog
le:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggest
Rid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{googl
e:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: [Link]
CHR - plugin: Error reading preferences file
CHR - Extension: Splendid = C:\Users\Huan\AppData\Local\Google\Chrome\User Data\
Default\Extensions\bdfkbdkkfmmckaadapdipihjfaacnkgd\3_0\
CHR - Extension: Tom's Planner -- Project Planner = C:\Users\Huan\AppData\Local\
Google\Chrome\User Data\Default\Extensions\bipbkjijodkkdkilghhekodmoagkcdnc\2_0\
CHR - Extension: Discover the Web with Friends = C:\Users\Huan\AppData\Local\Goo
gle\Chrome\User Data\Default\Extensions\delljcncghcpfoenicicifkolnkhmkdc\7.314_0
\
CHR - Extension: Daum Equation Editor = C:\Users\Huan\AppData\Local\Google\Chrom
e\User Data\Default\Extensions\dinfmiceliiomokeofbocegmacmagjhe\2.0.1_0\
CHR - Extension: Listango Bookmark Manager = C:\Users\Huan\AppData\Local\Google\
Chrome\User Data\Default\Extensions\dmbdkkenkdllkpiognpnmlaglmojagnh\1.0.1_0\
CHR - Extension: TeX equation editor = C:\Users\Huan\AppData\Local\Google\Chrome
\User Data\Default\Extensions\eggdddnmjoomglnkjhcpcnjbieiojini\1.0.0.4_0\
CHR - Extension: Lingoes Text Capture Plug-in = C:\Users\Huan\AppData\Local\Goog
le\Chrome\User Data\Default\Extensions\ehmbdiembdehhgnnoicidccmbhnhdejd\2.1_1\
CHR - Extension: Google Calendar = C:\Users\Huan\AppData\Local\Google\Chrome\Use
r Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0\
CHR - Extension: TabLink = C:\Users\Huan\AppData\Local\Google\Chrome\User Data\D
efault\Extensions\fiomkbglnahplbafedejbebpfnmmpgdj\0.4_0\
CHR - Extension: TabLink = C:\Users\Huan\AppData\Local\Google\Chrome\User Data\D
efault\Extensions\fiomkbglnahplbafedejbebpfnmmpgdj\0.4_0\~
CHR - Extension: Stylish = C:\Users\Huan\AppData\Local\Google\Chrome\User Data\D
efault\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe\1.2.2_0\
CHR - Extension: Memo Calendar = C:\Users\Huan\AppData\Local\Google\Chrome\User
Data\Default\Extensions\fpmolbenmlmgaljalobagjldokeoocco\1.0_0\
CHR - Extension: TimeMaps: World History Atlas = C:\Users\Huan\AppData\Local\Goo
gle\Chrome\User Data\Default\Extensions\gcknipbpempcbnncdekkeimmpjggfaem\1.0.5_0
\
CHR - Extension: ShareLaTeX = C:\Users\Huan\AppData\Local\Google\Chrome\User Dat
a\Default\Extensions\gibjhmenngmjnbmhfemjkolgkofimfjc\0.0.0.2_0\
CHR - Extension: AdBlock = C:\Users\Huan\AppData\Local\Google\Chrome\User Data\D
efault\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.25_0\
CHR - Extension: GmailTeX = C:\Users\Huan\AppData\Local\Google\Chrome\User Data\
Default\Extensions\gjnmclkoadjdljnfmbnnhaahilafoeji\5.15.6_0\
CHR - Extension: Yesware Email Tracking = C:\Users\Huan\AppData\Local\Google\Chr

ome\User Data\Default\Extensions\gkjnkapjmjfpipfcccnjbjcbgdnahpjp\2.0.149_0\
CHR - Extension: CircuitLab = C:\Users\Huan\AppData\Local\Google\Chrome\User Dat
a\Default\Extensions\haghanbgfkfpmepoohpigmglbfejljoj\0.0.0.8_0\
CHR - Extension: SuperSorter = C:\Users\Huan\AppData\Local\Google\Chrome\User Da
ta\Default\Extensions\hjebfgojnlefhdgmomncgjglmdckngij\0.4.4_0\
CHR - Extension: Don't Break the Chain = C:\Users\Huan\AppData\Local\Google\Chro
me\User Data\Default\Extensions\hlkkjgfbfgdcdjnddamlmgbipgbhgppk\1.2_0\
CHR - Extension: New Tab Redirect Plus! = C:\Users\Huan\AppData\Local\Google\Chr
ome\User Data\Default\Extensions\hnpoebddognhfcnfbfjdbgmgadkmmdkj\1.1.6_0\
CHR - Extension: Display LaTeX on [Link] = C:\Users\Huan\AppData\Local\Google
\Chrome\User Data\Default\Extensions\iamlipddanpcamngfnekhlejlijhjedg\1.8.2_0\
CHR - Extension: Dropbox = C:\Users\Huan\AppData\Local\Google\Chrome\User Data\D
efault\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl\3.0.8_0\
CHR - Extension: IDM Integration Module = C:\Users\Huan\AppData\Local\Google\Chr
ome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.19.3_0\
CHR - Extension: Clipular! Research, save & share screenshot = C:\Users\Huan\App
Data\Local\Google\Chrome\User Data\Default\Extensions\jmjbgcjbgmcfgbgikmbdioggjl
hjegpp\10.8.29.2046_0\
CHR - Extension: Bananatag for Gmail = C:\Users\Huan\AppData\Local\Google\Chrome
\User Data\Default\Extensions\jpbnpbfpgjkblmejlgkfkekajajhjcid\2.2.13_0\
CHR - Extension: Roomy Bookmarks Toolbar = C:\Users\Huan\AppData\Local\Google\Ch
rome\User Data\Default\Extensions\kmfbpoigddhdibjcilijiejaidggonfc\0.0.4_0\
CHR - Extension: Personal Trainer = C:\Users\Huan\AppData\Local\Google\Chrome\Us
er Data\Default\Extensions\kmgohkgndpahjklgpdihieeedjeneoke\1.7_0\
CHR - Extension: Math Science Engineering Calculators = C:\Users\Huan\AppData\Lo
cal\Google\Chrome\User Data\Default\Extensions\mnaaclhkigagfmmmejenjpgjmemgkipa\
1.4_0\
CHR - Extension: My Time Organizer = C:\Users\Huan\AppData\Local\Google\Chrome\U
ser Data\Default\Extensions\nbgjpoemniodpkigbjkleiaoifclhfdm\1.0.3_0\
CHR - Extension: To Do List = C:\Users\Huan\AppData\Local\Google\Chrome\User Dat
a\Default\Extensions\ncecfaonfegfhpgknfcepbfjlnojigde\2.2_0\
CHR - Extension: Google Wallet = C:\Users\Huan\AppData\Local\Google\Chrome\User
Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\
CHR - Extension: Neat Bookmarks = C:\Users\Huan\AppData\Local\Google\Chrome\User
Data\Default\Extensions\nnancliccjabjjmipbpjkfbijifaainp\0.9.17_0\
CHR - Extension: Docs PDF/PowerPoint Viewer (by Google) = C:\Users\Huan\AppData\
Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocb
n\3.10_0\
CHR - Extension: Scientific Calculator = C:\Users\Huan\AppData\Local\Google\Chro
me\User Data\Default\Extensions\npoipmeppdioagbkigdlnpmjphnolaog\1.0.2_0\
CHR - Extension: TINACloud = C:\Users\Huan\AppData\Local\Google\Chrome\User Data
\Default\Extensions\okbklkndcjiiekdnjjmbkpkpjnnbbboc\1.0.0.24_0\
CHR - Extension: Advanced Scientific Calci = C:\Users\Huan\AppData\Local\Google\
Chrome\User Data\Default\Extensions\okoiphachmdeohichmbglbllbhhphhcp\1.7_0\
O1 HOSTS File: ([2014/03/30 [Link] | 000,002,628 | ---- | M]) - C:\Windows\Sys
tem32\drivers\etc\hosts
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]

O1 - Hosts: [Link] [Link]

O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: [Link] [Link]
O1 - Hosts: 25 more lines...
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B4
58C2A3A8} - C:\Program Files\Internet Download Manager\[Link] (Internet Dow
nload Manager, Tonec Inc.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} C:\Program Files\Microsoft Office\Office14\[Link] (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
- C:\Program Files\Java\jre7\bin\[Link] (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02F
F} - C:\Program Files\Microsoft Office\Office14\[Link] (Microsoft Corporat
ion)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A
9} - C:\Program Files\Java\jre7\bin\[Link] (Oracle Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {50FC6457-F99A-471B-987A-4E8268A9C1
44} - No CLSID value found.
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\[Link] (AVG Technolo
gies CZ, s.r.o.)
O4 - HKLM..\Run: [Fences] C:\Program Files\Stardock\Fences\[Link] (Stardock
Corporation)
O4 - HKCU..\Run: [GoogleChromeAutoLaunch_F1F1587D176A754DDDA7675FFF6B98DC] C:\Pr
ogram Files\Google\Chrome\Application\[Link] (Google Inc.)
O4 - HKCU..\Run: [IDMan] C:\Program Files\Internet Download Manager\[Link] (T
onec Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentProm
ptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentProm
ptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSec
ureDesktop = 0
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Int
ernet Download Manager\[Link] ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Down
load Manager\[Link] ()
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:
\Program Files\Microsoft Office\Office14\[Link] (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE
0C6C49} - C:\Program Files\Microsoft Office\Office14\[Link] (Microsoft Cor
poration)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA
} - C:\Program Files\Microsoft Office\Office14\[Link] (Microsof
t Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-E
DE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\[Link]
l (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = [Link]
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{072BB2EA-6FB1-4836-9
F24-C608D7D4703E}: DhcpNameServer = [Link]

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1E17CADC-FFA9-4708-B
F75-1264AD318AE1}: NameServer = [Link] [Link]
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\P
rogram Files\AVG\AVG10\[Link] (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - ([Link]) - C:\Windows\[Link] (Microsoft
Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\[Link]) - C:\Windows\
System32\[Link] (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - ([Link]) - C:\Windows\S
ystem32\[Link] (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value
found.
O22 - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellE
xt - C:\Program Files\Stardock\Fences\[Link] (Stardock)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Progra
m Files\Microsoft Office\Office14\[Link] (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 [Link] | 000,000,024 | ---- | M] () - C:\auto
[Link] -- [ NTFS ]
O33 - MountPoints2\{1c826f07-36ea-11e3-b0d9-99f54067680a}\Shell - "" = AutoRun
O33 - MountPoints2\{1c826f07-36ea-11e3-b0d9-99f54067680a}\Shell\AutoRun\command
- "" = H:\.\[Link]
O33 - MountPoints2\{b822aa7c-7f33-11e3-85e1-fabdef3d69d7}\Shell - "" = AutoRun
O33 - MountPoints2\{b822aa7c-7f33-11e3-85e1-fabdef3d69d7}\Shell\AutoRun\command
- "" = H:\[Link]
O33 - MountPoints2\{b822aa93-7f33-11e3-85e1-fabdef3d69d7}\Shell - "" = AutoRun
O33 - MountPoints2\{b822aa93-7f33-11e3-85e1-fabdef3d69d7}\Shell\AutoRun\command
- "" = J:\[Link]
O33 - MountPoints2\J\Shell - "" = AutoRun
O33 - MountPoints2\J\Shell\AutoRun\command - "" = J:\[Link]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\[Link] /sync)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\[Link] /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/col
or]
[2014/04/13 [Link] | 000,000,000 | ---D |
Scan
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
ws\Start Menu\Programs\McAfee Security Scan
[2014/04/13 [Link] | 000,000,000 | ---D |
ty Scan
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
ders
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
postureAgent
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |

C] -- C:\ProgramData\McAfee Security
C] -- C:\ProgramData\McAfee
C] -- C:\ProgramData\Microsoft\Windo
Plus
C] -- C:\Program Files\McAfee Securi
C] -- C:\Windows\System32\SPReview
C] -- C:\Windows\System32\EventProvi
C] -- C:\Windows\System32\MRT
C] -- C:\Program Files\Common Files\
C] -- C:\Program Files\Intel
C] -- C:\Intel
C] -- C:\Users\Huan\AppData\Roaming\

Logitech
[2014/04/13 [Link] | 000,000,000 | ---D |
ws\Start Menu\Programs\SetPoint
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
Logishrd
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
ws\Start Menu\Programs\Renesas Electronics
[2014/04/13 [Link] | 000,000,000 | ---D |
ronics
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/13 [Link] | 000,000,000 | ---D |
evatedDiagnostics
[2014/04/13 [Link] | 000,000,000 | -HSD |
4F99-B5F4-BED72B2A038C}
[2014/04/13 [Link] | 000,000,000 | ---D |
OpenCandy
[2014/04/13 [Link] | 000,000,000 | ---D |
rmi
[2014/04/13 [Link] | 000,000,000 | ---D |
ws\Start Menu\Programs\Speccy
[2014/04/13 [Link] | 000,000,000 | ---D |
[2014/04/12 [Link] | 000,000,000 | ---D |
zilla
[2014/04/12 [Link] | 000,000,000 | ---D |
[2014/04/12 [Link] | 000,000,000 | ---D |
enance Service
[2014/04/12 [Link] | 000,000,000 | ---D |
[2014/04/12 [Link] | 000,062,008 | ---- |
ws\System32\drivers\[Link]

C] -- C:\ProgramData\Microsoft\Windo
C] -- C:\ProgramData\Logitech
C] -- C:\Program Files\Common Files\
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]
C]

--------------------------------

C:\Program Files\SetPoint
C:\Windows\System32\2C0A
C:\Windows\System32\0C0A
C:\Windows\System32\0C04
C:\Windows\System32\0816
C:\Windows\System32\0804
C:\Windows\System32\0424
C:\Windows\System32\041F
C:\Windows\System32\041E
C:\Windows\System32\041D
C:\Windows\System32\041B
C:\Windows\System32\0419
C:\Windows\System32\0416
C:\Windows\System32\0415
C:\Windows\System32\0414
C:\Windows\System32\0413
C:\Windows\System32\0412
C:\Windows\System32\0411
C:\Windows\System32\0410
C:\Windows\System32\040E
C:\Windows\System32\040D
C:\Windows\System32\040C
C:\Windows\System32\040B
C:\Windows\System32\040A
C:\Windows\System32\0408
C:\Windows\System32\0407
C:\Windows\System32\0406
C:\Windows\System32\0405
C:\Windows\System32\0404
C:\Windows\System32\0401
C:\ProgramData\Microsoft\Windo

C] -- C:\Program Files\Renesas Elect

C] -- C:\DRIVERS
C] -- C:\Users\Huan\AppData\Local\El
C] -- C:\ProgramData\{FE8D473A-6F06C] -- C:\Users\Huan\AppData\Roaming\
C] -- C:\Users\Huan\AppData\Roaming\
C] -- C:\ProgramData\Microsoft\Windo
C] -- C:\Program Files\Speccy
C] -- C:\Users\Huan\AppData\Local\Mo
C] -- C:\ProgramData\Mozilla
C] -- C:\Program Files\Mozilla Maint
C] -- C:\AdwCleaner
C] (Horizon DataSys Inc) -- C:\Windo

[2014/04/12 [Link] | 000,024,632 | ---- | C] (Horizon DataSys Inc) -- C:\Windo

ws\System32\drivers\[Link]
[2014/04/12 [Link] | 000,023,608 | ---- | C] (Horizon DataSys Inc) -- C:\Windo
ws\System32\[Link]
[2014/04/12 [Link] | 000,023,096 | ---- | C] (Horizon DataSys Inc) -- C:\Windo
ws\System32\drivers\[Link]
[2014/04/12 [Link] | 000,021,560 | ---- | C] (Horizon DataSys Inc) -- C:\Windo
ws\System32\drivers\[Link]
[2014/04/12 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Shield
[2014/04/02 [Link] | 000,025,328 | ---- | C] (Synaptics Incorporated) -- C:\Wi
ndows\System32\drivers\Smb_driver_Intel.sys
[2014/04/01 [Link] | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Asha
mpoo
[2014/04/01 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\Desktop\Images f
or report
[2014/03/31 [Link] | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2014/03/28 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\Desktop\Anh
[2014/03/28 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\Desktop\Huan
[2014/03/26 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\AppData\Roaming\
Design Science
[2014/03/26 [Link] | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\MathType 6
[2014/03/26 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firef
ox
[2014/03/26 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Aurora
[2014/03/26 [Link] | 000,000,000 | ---D | C] -- C:\ProgramData\Ashampoo
[2014/03/26 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo
[2014/03/22 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\AppData\Roaming\
Microsoft\Windows\Start Menu\Programs\Co Rom+
[2014/03/22 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\AppData\Roaming\
IDM
[2014/03/22 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\AppData\Roaming\
Microsoft\Windows\Start Menu\Programs\Internet Download Manager
[2014/03/22 [Link] | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\Internet Download Manager
[2014/03/22 [Link] | 000,000,000 | ---D | C] -- C:\Windows\System32\cache
[2014/03/20 [Link] | 000,108,000 | ---- | C] (Tonec Inc.) -- C:\Windows\System
32\drivers\[Link]
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\SharePoint
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\Microsoft Office
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Syn
chronization Services
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\
DESIGNER
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL
Server Compact Edition
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Vis
ual Studio 8
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Ana
lysis Services
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\AppData\Local\St
ardock_Corporation
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\ProgramData\Stardock
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\Documents\Stardo
ck
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\AppData\Local\St
ardock
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo

ws\Start Menu\Programs\Stardock
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Program Files\Stardock
[2014/03/20 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\AppData\Roaming\
Mozilla
[2014/03/19 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\Desktop\DienDanB
acLieu.Net_hosts
[2014/03/19 [Link] | 000,000,000 | ---D | C] -- C:\Downloads
[2014/03/19 [Link] | 000,000,000 | ---D | C] -- C:\ProgramData\Free Download M
anager
[2014/03/19 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\Desktop\VLSI
[2014/03/18 [Link] | 000,000,000 | ---D | C] -- C:\MentorGraphics
[2014/03/18 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\AppData\Roaming\
VideoDrivers
[2014/03/18 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\Desktop\Modelsim
6.5
[2014/03/17 [Link] | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\Yahoo! Messenger
[2014/03/17 [Link] | 000,000,000 | ---D | C] -- C:\Users\Huan\Desktop\Design o
f a RF CMOS Low Noise Amplifier Nirav Desai - Academia.edu_files
[2014/03/16 [Link] | 000,000,000 | R--D | C] -- C:\Users\Huan\Documents\Notes
[2013/11/15 [Link] | 001,832,744 | ---- | C] (VNG Corporation) -- C:\Users\Hua
n\AppData\Roaming\[Link]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2014/04/13 [Link] | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flas
h Player [Link]
[2014/04/13 [Link] | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB
0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/04/13 [Link] | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB
0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/04/13 [Link] | 000,660,318 | ---- | M] () -- C:\Windows\System32\perfh00
[Link]
[2014/04/13 [Link] | 000,121,214 | ---- | M] () -- C:\Windows\System32\perfc00
[Link]
[2014/04/13 [Link] | 000,000,878 | ---- | M] () -- C:\Windows\tasks\GoogleUpda
[Link]
[2014/04/13 [Link] | 000,000,450 | -H-- | M] () -- C:\Windows\tasks\Sk-Enhance
[Link]
[2014/04/13 [Link] | 000,067,584 | --S- | M] () -- C:\Windows\[Link]
[2014/04/13 [Link] | 1551,253,504 | -HS- | M] () -- C:\[Link]
[2014/04/13 [Link] | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpda
[Link]
[2014/04/13 [Link] | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpda
[Link]
[2014/04/13 [Link] | 159,420,632 | ---- | M] () -- C:\Windows\System32\drivers
\AVG\[Link]
[2014/04/13 [Link] | 000,000,992 | ---- | M] () -- C:\Windows\tasks\CocCocUpda
[Link]
[2014/04/13 [Link] | 000,002,072 | ---- | M] () -- C:\ProgramData\Microsoft\Wi
ndows\Start Menu\Programs\Startup\McAfee Security Scan [Link]
[2014/04/13 [Link] | 000,001,367 | ---- | M] () -- C:\Users\Huan\Application D
ata\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer [Link]
k
[2014/04/13 [Link] | 001,972,496 | ---- | M] () -- C:\Windows\System32\FNTCACH
[Link]
[2014/04/13 [Link] | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpda
[Link]
[2014/04/13 [Link] | 000,000,940 | ---- | M] () -- C:\Windows\tasks\CocCocUpda
[Link]

[2014/04/13 [Link] | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit

.inf
[2014/04/13 [Link] | 000,243,516 | ---- | M] () -- C:\Windows\System32\drivers
\AVG\[Link]
[2014/04/13 [Link] | 000,000,854 | RHS- | M] () -- C:\ProgramData\[Link]
[2014/04/12 [Link] | 000,002,004 | ---- | M] () -- C:\Users\Public\Desktop\Goo
gle [Link]
[2014/04/12 [Link] | 000,062,008 | ---- | M] (Horizon DataSys Inc) -- C:\Windo
ws\System32\drivers\[Link]
[2014/04/12 [Link] | 000,024,632 | ---- | M] (Horizon DataSys Inc) -- C:\Windo
ws\System32\drivers\[Link]
[2014/04/12 [Link] | 000,023,096 | ---- | M] (Horizon DataSys Inc) -- C:\Windo
ws\System32\drivers\[Link]
[2014/04/12 [Link] | 000,021,560 | ---- | M] (Horizon DataSys Inc) -- C:\Windo
ws\System32\drivers\[Link]
[2014/04/12 [Link] | 000,023,608 | ---- | M] (Horizon DataSys Inc) -- C:\Windo
ws\System32\[Link]
[2014/04/08 [Link] | 000,044,184 | ---- | M] () -- C:\Users\Huan\Desktop\Error
Amplifier [Link]
[2014/04/08 [Link] | 000,048,047 | ---- | M] () -- C:\Users\Huan\Desktop\Schem
[Link]
[2014/04/07 [Link] | 000,000,132 | ---- | M] () -- C:\Users\Huan\AppData\Roami
ng\Adobe PNG Format CS6 Prefs
[2014/04/06 [Link] | 021,767,910 | ---- | M] () -- C:\Users\Huan\Desktop\[Davi
d_Johns_Ken_Martin]_Analog_Integrated_Circuit([Link]).pdf
[2014/04/04 [Link] | 000,789,768 | ---- | M] () -- C:\Users\Huan\Desktop\For a
nd Against ([Link]).pdf
[2014/04/02 [Link] | 000,001,192 | ---- | M] () -- C:\Users\Huan\Desktop\Drive
[Link]
[2014/04/01 [Link] | 000,000,094 | ---- | M] () -- C:\Users\Huan\AppData\Roami
ng\[Link]
[2014/04/01 [Link] | 000,000,033 | ---- | M] () -- C:\Users\Huan\AppData\Roami
ng\[Link]
[2014/03/31 [Link] | 197,572,382 | ---- | M] () -- C:\Windows\[Link]
[2014/03/30 [Link] | 000,002,628 | ---- | M] () -- C:\Windows\System32\drivers
\etc\hosts
[2014/03/29 [Link] | 000,003,492 | ---- | M] () -- C:\Windows\System32\drivers
\etc\[Link]
[2014/03/26 [Link] | 000,000,213 | ---- | M] () -- C:\Users\Public\Desktop\You
r Software [Link]
[2014/03/26 [Link] | 000,000,109 | ---- | M] () -- C:\Users\Huan\Documents\txp
_fig.tex
[2014/03/25 [Link] | 000,158,274 | ---- | M] () -- C:\Users\Huan\Desktop\Vietn
am_Economic_Times2009.pdf
[2014/03/24 [Link] | 000,004,482 | ---- | M] () -- C:\Users\Huan\AppData\Roami
ng\[Link]
[2014/03/22 [Link] | 000,002,374 | ---- | M] () -- C:\Users\Huan\Desktop\Co Ro
m+.lnk
[2014/03/22 [Link] | 000,000,979 | ---- | M] () -- C:\Users\Huan\Desktop\Inter
net Download [Link]
[2014/03/22 [Link] | 000,042,272 | ---- | M] (AVG Technologies) -- C:\Windows\
System32\drivers\[Link]
[2014/03/20 [Link] | 000,446,258 | ---- | M] () -- C:\Windows\[Link]
[2014/03/17 [Link] | 000,001,105 | ---- | M] () -- C:\Users\Public\Desktop\Yah
oo! [Link]
[2014/03/17 [Link] | 000,001,129 | ---- | M] () -- C:\Users\Huan\Application D
ata\Microsoft\Internet Explorer\Quick Launch\Yahoo! [Link]
[2014/03/16 [Link] | 000,149,133 | ---- | M] () -- C:\Users\Huan\Desktop\collo
quial and standard [Link]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2014/04/13 [Link] | 000,002,072 | ---- | C] () -- C:\ProgramData\Microsoft\Wi
ndows\Start Menu\Programs\Startup\McAfee Security Scan [Link]
[2014/04/13 [Link] | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit
.inf
[2014/04/13 [Link] | 000,000,854 | RHS- | C] () -- C:\ProgramData\[Link]
[2014/04/12 [Link] | 000,001,077 | ---- | C] () -- C:\ProgramData\Microsoft\Wi
ndows\Start Menu\Programs\Mozilla [Link]
[2014/04/08 [Link] | 000,044,184 | ---- | C] () -- C:\Users\Huan\Desktop\Error
Amplifier [Link]
[2014/04/08 [Link] | 000,048,047 | ---- | C] () -- C:\Users\Huan\Desktop\Schem
[Link]
[2014/04/06 [Link] | 021,767,910 | ---- | C] () -- C:\Users\Huan\Desktop\[Davi
d_Johns_Ken_Martin]_Analog_Integrated_Circuit([Link]).pdf
[2014/04/04 [Link] | 000,789,768 | ---- | C] () -- C:\Users\Huan\Desktop\For a
nd Against ([Link]).pdf
[2014/03/31 [Link] | 197,572,382 | ---- | C] () -- C:\Windows\[Link]
[2014/03/26 [Link] | 000,000,094 | ---- | C] () -- C:\Users\Huan\AppData\Roami
ng\[Link]
[2014/03/26 [Link] | 000,000,033 | ---- | C] () -- C:\Users\Huan\AppData\Roami
ng\[Link]
[2014/03/26 [Link] | 000,000,213 | ---- | C] () -- C:\Users\Public\Desktop\You
r Software [Link]
[2014/03/26 [Link] | 000,000,109 | ---- | C] () -- C:\Users\Huan\Documents\txp
_fig.tex
[2014/03/25 [Link] | 000,158,274 | ---- | C] () -- C:\Users\Huan\Desktop\Vietn
am_Economic_Times2009.pdf
[2014/03/22 [Link] | 000,002,374 | ---- | C] () -- C:\Users\Huan\Desktop\Co Ro
m+.lnk
[2014/03/22 [Link] | 000,000,992 | ---- | C] () -- C:\Windows\tasks\CocCocUpda
[Link]
[2014/03/22 [Link] | 000,000,940 | ---- | C] () -- C:\Windows\tasks\CocCocUpda
[Link]
[2014/03/22 [Link] | 000,000,979 | ---- | C] () -- C:\Users\Huan\Desktop\Inter
net Download [Link]
[2014/03/20 [Link] | 000,446,258 | ---- | C] () -- C:\Windows\[Link]
[2014/03/17 [Link] | 000,001,105 | ---- | C] () -- C:\Users\Public\Desktop\Yah
oo! [Link]
[2014/03/17 [Link] | 000,001,129 | ---- | C] () -- C:\Users\Huan\Application D
ata\Microsoft\Internet Explorer\Quick Launch\Yahoo! [Link]
[2014/03/16 [Link] | 000,149,133 | ---- | C] () -- C:\Users\Huan\Desktop\collo
quial and standard [Link]
[2014/02/06 [Link] | 000,000,132 | ---- | C] () -- C:\Users\Huan\AppData\Roami
ng\Adobe PNG Format CS6 Prefs
[2013/12/15 [Link] | 000,000,016 | -H-- | C] () -- C:\Users\Huan\1HmOlao4361
[2013/12/15 [Link] | 000,000,429 | ---- | C] () -- C:\Users\Huan\[Link]
[2013/11/19 [Link] | 000,216,064 | ---- | C] () -- C:\Windows\System32\gcapi_d
[Link]
[2013/10/31 [Link] | 000,000,363 | ---- | C] () -- C:\Users\Huan\AppData\Roami
ng\Solve Elec 2.5 Prefs
[2013/10/28 [Link] | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsv
[Link]
[2013/10/28 [Link] | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsv
[Link]
[2013/10/28 [Link] | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipbla
[Link]
[2013/10/28 [Link] | 000,618,823 | ---- | C] () -- C:\Windows\System32\atiicdx
[Link]
[2013/10/20 [Link] | 000,274,061 | ---- | C] () -- C:\Windows\System32\drivers

\[Link]
[2013/10/19 [Link]
ng\[Link]
[2013/10/18 [Link]
[Link]
[2013/10/18 [Link]
[Link]
[2013/10/18 [Link]
[2013/08/05 [Link]
g

| 000,004,482 | ---- | C] () -- C:\Users\Huan\AppData\Roami

| 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHel
| 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBr
| 000,000,000 | ---- | C] () -- C:\Windows\[Link]
| 000,024,036 | ---- | C] () -- C:\Users\Huan\[Link]

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/07/14 [Link] | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop
.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}
\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}
\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1
}\InProcServer32]
"" = %SystemRoot%\system32\[Link] -- [2012/06/09 [Link] | 012,873,728 | --- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F
}\InProcServer32]
"" = %systemroot%\system32\wbem\[Link] -- [2010/11/20 [Link] | 000,606,2
08 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1
}\InProcServer32]
"" = %systemroot%\system32\wbem\[Link] -- [2009/07/14 [Link] | 000,342,52
8 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[color=#E56717]========== LOP Check ==========[/color]
[2013/10/17 [Link]
AVG10
[2013/11/21 [Link]
Azureus
[2014/02/09 [Link]
CocCoc
[2014/03/26 [Link]
Design Science
[2014/04/13 [Link]
DMCache
[2014/03/08 [Link]
Foxit Software
[2014/03/24 [Link]
IDM
[2013/10/23 [Link]
National Instruments
[2014/04/13 [Link]
OpenCandy

| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\

| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\
| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\
| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\
| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\
| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\
| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\
| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\
| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\

[2014/04/13 [Link]
rmi
[2014/02/05 [Link]
Software Informer
[2014/03/20 [Link]
Stardock
[2013/11/09 [Link]
TeraCopy
[2014/03/18 [Link]
VideoDrivers
[2014/01/06 [Link]
xm1

| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\

[color=#E56717]========== Purity Check ==========[/color]

[color=#E56717]========== Files - Unicode (All) ==========[/color]

[2014/03/28 [Link] | 002,187,328 | ---- | M] ()(C:\Users\Huan\Desktop\SVTN-Bo co
th?c t?p t?t nghi?[Link]) -- C:\Users\Huan\Desktop\SVTN-Bo co thc tp tt nghip-Hu
[Link]
[2014/03/27 [Link] | 002,187,328 | ---- | C] ()(C:\Users\Huan\Desktop\SVTN-Bo co
th?c t?p t?t nghi?[Link]) -- C:\Users\Huan\Desktop\SVTN-Bo co thc tp tt nghip-Hu
[Link]
[2014/03/27 [Link] | 000,585,036 | ---- | M] ()(C:\Users\Huan\Desktop\L?I NI ?U
(Repaired).docx) -- C:\Users\Huan\Desktop\LI NI U (Repaired).docx
[2014/03/27 [Link] | 000,585,036 | ---- | C] ()(C:\Users\Huan\Desktop\L?I NI ?U
(Repaired).docx) -- C:\Users\Huan\Desktop\LI NI U (Repaired).docx
[2014/03/27 [Link] | 000,510,973 | ---- | M] ()(C:\Users\Huan\Desktop\L?I NI ?U.
docx) -- C:\Users\Huan\Desktop\LI NI [Link]
[2014/03/23 [Link] | 000,510,973 | ---- | C] ()(C:\Users\Huan\Desktop\L?I NI ?U.
docx) -- C:\Users\Huan\Desktop\LI NI [Link]
[2014/03/23 [Link] | 002,325,926 | ---- | C] ()(C:\Users\Huan\Desktop\SVTN-Bo co
th?c .docx) -- C:\Users\Huan\Desktop\SVTN-Bo co thc .docx
[2014/03/23 [Link] | 002,325,926 | ---- | M] ()(C:\Users\Huan\Desktop\SVTN-Bo co
th?c .docx) -- C:\Users\Huan\Desktop\SVTN-Bo co thc .docx
[2014/02/02 [Link] | 000,145,902 | ---- | M] ()(C:\Users\Huan\Documents\Mau do
n xin c?p HB [Link]) -- C:\Users\Huan\Documents\Mau don xin cp HB VietHope.
pdf
[2014/02/02 [Link] | 000,145,902 | ---- | C] ()(C:\Users\Huan\Documents\Mau do
n xin c?p HB [Link]) -- C:\Users\Huan\Documents\Mau don xin cp HB VietHope.
pdf
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:07F6D9E4
< End of report >

System Performance Report
No ratings yet
System Performance Report
49 pages
OTL Log Analysis for Windows 11
No ratings yet
OTL Log Analysis for Windows 11
27 pages
OTL Logfile Analysis for Windows XP
No ratings yet
OTL Logfile Analysis for Windows XP
44 pages
OTL Logfile Analysis Report
No ratings yet
OTL Logfile Analysis Report
16 pages
OTL Logfile Analysis for Windows System
No ratings yet
OTL Logfile Analysis for Windows System
22 pages
OTL Log Analysis for Windows XP
No ratings yet
OTL Log Analysis for Windows XP
19 pages
Oleg N. Scherbakov System Log Analysis
No ratings yet
Oleg N. Scherbakov System Log Analysis
18 pages
AT-Destroyer 2.1 Malware Removal Tool
No ratings yet
AT-Destroyer 2.1 Malware Removal Tool
6 pages
AT-Destroyer Malware Removal Tool
No ratings yet
AT-Destroyer Malware Removal Tool
5 pages
UsbFix Antivirus Scan Report
No ratings yet
UsbFix Antivirus Scan Report
6 pages
Extras
No ratings yet
Extras
8 pages
Driver Files Overview for MS440GX
No ratings yet
Driver Files Overview for MS440GX
785 pages
Fragmented File Analysis Report
No ratings yet
Fragmented File Analysis Report
194 pages
UsbFix Report
No ratings yet
UsbFix Report
194 pages
Windows System Resource Report
No ratings yet
Windows System Resource Report
31 pages
UsbFix V 7.172 System Report
No ratings yet
UsbFix V 7.172 System Report
9 pages
MadExcept Error on Windows 7 System
No ratings yet
MadExcept Error on Windows 7 System
8 pages
UsbFix Antivirus Scan Report
No ratings yet
UsbFix Antivirus Scan Report
3 pages
ComboFix Log Analysis for Windows XP
No ratings yet
ComboFix Log Analysis for Windows XP
4 pages
System32 Executable File List
No ratings yet
System32 Executable File List
11 pages
System Overview and Software List
No ratings yet
System Overview and Software List
7 pages
Missing rtl120.bpl Error Report
No ratings yet
Missing rtl120.bpl Error Report
5 pages
Access Violation in activate.exe
No ratings yet
Access Violation in activate.exe
9 pages
System File Details Report
No ratings yet
System File Details Report
12 pages
ComboFix Log - February 2012
No ratings yet
ComboFix Log - February 2012
32 pages
USBFix System Analysis Report
No ratings yet
USBFix System Analysis Report
6 pages
Extras
No ratings yet
Extras
9 pages
Tmlog
No ratings yet
Tmlog
13 pages
Common Executables and DLLs List
No ratings yet
Common Executables and DLLs List
17 pages
Zadia
No ratings yet
Zadia
55 pages
Windows Support Tools Overview
No ratings yet
Windows Support Tools Overview
3 pages
Imagen
No ratings yet
Imagen
506 pages
Facebook Messenger Registry Settings
No ratings yet
Facebook Messenger Registry Settings
103 pages
StartupList Report for GBillingClient
No ratings yet
StartupList Report for GBillingClient
3 pages
ComboFix Log Analysis for Windows XP
No ratings yet
ComboFix Log Analysis for Windows XP
4 pages
MTPuTTY Access Violation Report
No ratings yet
MTPuTTY Access Violation Report
66 pages
UsbFix Antivirus Scan Report
No ratings yet
UsbFix Antivirus Scan Report
8 pages
MaxaRO Patcher Error Report
No ratings yet
MaxaRO Patcher Error Report
7 pages
Windows Pasta Directory Overview
No ratings yet
Windows Pasta Directory Overview
3 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
UsbFix V8.211 System & Startup Analysis
No ratings yet
UsbFix V8.211 System & Startup Analysis
6 pages
Handle
No ratings yet
Handle
24 pages
Free DVD Decrypter Installation Log
No ratings yet
Free DVD Decrypter Installation Log
6 pages
Windows 10 System and Software Overview
No ratings yet
Windows 10 System and Software Overview
5 pages
SDFGG DFG FGFG
No ratings yet
SDFGG DFG FGFG
47 pages
ZHP Diag
No ratings yet
ZHP Diag
41 pages
LUNAPatcher Access Violation Report
No ratings yet
LUNAPatcher Access Violation Report
7 pages
Dogwiftools System Info Report
No ratings yet
Dogwiftools System Info Report
202 pages
UsbFix Antivirus Scan Report 2021
No ratings yet
UsbFix Antivirus Scan Report 2021
4 pages
AdwCleaner v6.021 Scan Log Summary
No ratings yet
AdwCleaner v6.021 Scan Log Summary
4 pages
UsbFix Antivirus Scan Report
No ratings yet
UsbFix Antivirus Scan Report
4 pages
AdwCleaner Scan Results for Windows 7
No ratings yet
AdwCleaner Scan Results for Windows 7
3 pages
Windows System32 Directory Files
No ratings yet
Windows System32 Directory Files
35 pages
UsbFix Antivirus Scan Report
No ratings yet
UsbFix Antivirus Scan Report
8 pages
Access Violation Report for 110628
No ratings yet
Access Violation Report for 110628
4 pages
May Bodo Ridley
No ratings yet
May Bodo Ridley
4 pages
Trans Analysis1
No ratings yet
Trans Analysis1
39 pages
Electronic Component Jumper Guide
No ratings yet
Electronic Component Jumper Guide
2 pages
Understanding Frequency Response
No ratings yet
Understanding Frequency Response
74 pages
Vietnam's Manufacturing Future Insights
No ratings yet
Vietnam's Manufacturing Future Insights
1 page
Thieu Nang
No ratings yet
Thieu Nang
18 pages
Cadence Tutorial-Ece219 Li2
No ratings yet
Cadence Tutorial-Ece219 Li2
14 pages
Microstrip Matching for Doherty Amplifier
No ratings yet
Microstrip Matching for Doherty Amplifier
3 pages
Ele804 Lab Manual Lna
100% (1)
Ele804 Lab Manual Lna
58 pages
LNA Topologies and Design Considerations
No ratings yet
LNA Topologies and Design Considerations
44 pages
Huffman and Elias Codes Explained
No ratings yet
Huffman and Elias Codes Explained
7 pages

Analysis of usb2ser.sys in OTL Log

Uploaded by

Analysis of usb2ser.sys in OTL Log

Uploaded by

OTL logfile created on: 4/13/2014 [Link] PM - Run 1

OTL by OldTimer - Version [Link]

PRC - [2011/03/16 [Link] | 001,025,888 | ---- | M] (AVG Technologies CZ, s.r.o

[color=#E56717]========== Services (SafeList) ==========[/color]

| Stopped] -- C:\Program Files\Shield\[Link] -- (ShdServ)

| On_Demand | Stopped] -- system32\DRIVERS\vmnetada

ystem | System | Running] -- C:\Program Files\UltraISO\drivers\[Link] -- (

FF - [Link] - File not found

[2014/04/12 [Link] | 000,000,000 | ---D | M] (No name found) -- C:\Users\Huan\

O1 - Hosts: [Link] [Link]

C] -- C:\Program Files\Renesas Elect

[2014/04/12 [Link] | 000,024,632 | ---- | C] (Horizon DataSys Inc) -- C:\Windo

[2014/04/13 [Link] | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit

[color=#E56717]========== Files Created - No Company Name ==========[/color]

| 000,004,482 | ---- | C] () -- C:\Users\Huan\AppData\Roami

[color=#E56717]========== ZeroAccess Check ==========[/color]

| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\

| 000,000,000 | ---D | M] -- C:\Users\Huan\AppData\Roaming\

[color=#E56717]========== Purity Check ==========[/color]

[color=#E56717]========== Files - Unicode (All) ==========[/color]

You might also like