Hello TSF, One of the most respected communities on the internet, heroic I must add.
I have had posted here before and have my problems resolved, i am having one again, I am experiencing slow browsing, even the GMER.exe had to be downloaded via a VPN.
-------------------------------------------------------------------------------
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.7600.16385
Run by Psio at 15:01:25 on 2014-09-18
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3317.1913 [GMT 5:00]
.
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\atiesrxx.exe
C:\Program Files\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\ProgramData\CharJi EVO\OnlineUpdate\ouc.exe
C:\Program Files\Hotspot Shield\bin\cmw_srv.exe
C:\ProgramData\DatacardService\HWDeviceService.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\ProgramData\MobileBrServ\mbbservice.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\Ctxfihlp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files\CharJi EVO\CharJi EVO.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Razer\Lachesis 5600\LachesisSysTray.exe
C:\Windows\vmsnap3.exe
C:\Windows\Domino.exe
C:\Users\Psio\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\SYSTEM32\CTXFISPI.EXE
C:\Program Files\Hotspot Shield\bin\hsscp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Hotspot Shield\bin\af_proxy_cmd.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Hotspot Shield\bin\openvpn.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Hotspot Shield\bin\fbwmgr.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Hotspot Shield\bin\fbw.exe
C:\Program Files\Hotspot Shield\bin\fbw.exe
C:\Program Files\Hotspot Shield\bin\fbw.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\sppsvc.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.us.com/v/2/?guid={F3EFB0A8-424E-4713-8C76-039B4347E9CA}&serpv=17
uDefault_Page_URL = hxxp://search.us.com/v/2/?guid={F3EFB0A8-424E-4713-8C76-039B4347E9CA}&serpv=17
uProxyServer = hxxp=127.0.0.1:8555;https=127.0.0.1:8555
uProxyOverride = <local>127.0.0.1;localhost;10.*;192.168.*;127.0.0.1:895;127.0.0.1:896
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
uRun: [uTorrent] "c:\users\psio\appdata\roaming\utorrent\uTorrent.exe" /MINIMIZED
uRun: [Wondershare Helper Compact.exe] "c:\program files\common files\wondershare\wondershare helper compact\WSHelperSetup.exe"
uRun: [GoogleChromeAutoLaunch_155C386C43597D4A43CA95FE82403925] "c:\program files\google\chrome\application\chrome.exe" --no-startup-window
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [Razer Lachesis Driver] c:\program files\razer\lachesis 5600\LachesisSysTray.exe
mRun: [VMSnap3] c:\windows\VMSnap3.exe
mRun: [Domino] c:\windows\Domino.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
TCP: NameServer = 8.8.8.8
TCP: Interfaces\{598DFB1B-A8E1-448C-81CE-6DDE08599A1D} : NameServer = 182.176.32.29 119.159.255.36
TCP: Interfaces\{64D09A72-59F2-408A-BD34-76CA52C84E0F} : DHCPNameServer = 8.8.8.8
TCP: Interfaces\{7AC50C25-A9ED-48AC-87AF-F5EFE1CB3B1D} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{9664AEDF-E8FB-42F0-B420-5AA9ED0AAA57} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{ED6E7E2E-2072-43C9-87D9-F01AEC075170} : NameServer = 210.2.181.6,210.2.177.7
TCP: Interfaces\{ED6E7E2E-2072-43C9-87D9-F01AEC075170} : DHCPNameServer = 62.113.218.106 8.8.8.8
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\37.0.2062.120\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\psio\appdata\roaming\mozilla\firefox\profiles\lx9486hm.default-1390572488719\
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\update\1.3.24.15\npGoogleUpdate3.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_15_0_0_152.dll
.
============= SERVICES / DRIVERS ===============
.
R1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\drivers\hssdrv6.sys [2014-5-17 39624]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2014-1-16 217600]
R2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\skype\toolbars\autoupdate\SkypeC2CAutoUpdateSvc.exe [2014-7-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\skype\toolbars\pnrsvc\SkypeC2CPNRSvc.exe [2014-7-14 1767520]
R2 hshld;Hotspot Shield Service;c:\program files\hotspot shield\bin\cmw_srv.exe [2014-5-17 919040]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\datacardservice\HWDeviceService.exe [2013-2-6 276048]
R2 Mobile Broadband HL Service;Mobile Broadband HL Service;c:\programdata\mobilebrserv\mbbService.exe [2014-1-28 239696]
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\intel\intel(r) management engine components\uns\UNS.exe [2014-1-16 2320920]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2014-1-16 86656]
R3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\system32\drivers\CT20XUT.sys [2011-8-22 171096]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\system32\drivers\CTEXFIFX.sys [2011-8-22 1324120]
R3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\system32\drivers\CTHWIUT.sys [2011-8-22 72792]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\drivers\e1k6232.sys [2014-1-16 224424]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2014-9-17 11904]
R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\drivers\ewusbwwan.sys [2014-9-17 381952]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2014-9-17 77824]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\drivers\taphss6.sys [2014-5-7 37064]
S2 CharJi EVO. RunOuc;CharJi EVO. OUC;c:\program files\charji evo\updatedog\ouc.exe [2014-9-17 656976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 MgAssistService;MgAssist Service;c:\program files\mobogenie\mgassist.exe --> c:\program files\mobogenie\MgAssist.exe [?]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2014-4-3 315008]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\common files\creative labs shared\service\CTAELicensing.exe [2014-1-16 79360]
S3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.sys [2011-8-22 171096]
S3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.sys [2011-8-22 1324120]
S3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.sys [2011-8-22 72792]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [2014-4-28 80184]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2014-9-17 95232]
S3 vvftav303;vvftav303;c:\windows\system32\drivers\vvftav303.sys [2014-6-2 480128]
S3 ZSMC0303;A4 TECH PC Camera H;c:\windows\system32\drivers\usbVM303.sys [2014-6-2 1472768]
.
=============== Created Last 30 ================
.
2014-09-17 18:28:51 95232 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys
2014-09-17 18:28:51 861696 ----a-w- c:\windows\system32\drivers\mod7700.sys
2014-09-17 18:28:51 77824 ----a-w- c:\windows\system32\drivers\ew_jubusenum.sys
2014-09-17 18:28:51 70528 ----a-w- c:\windows\system32\drivers\ew_jucdcecm.sys
2014-09-17 18:28:51 381952 ----a-w- c:\windows\system32\drivers\ewusbwwan.sys
2014-09-17 18:28:51 27776 ----a-w- c:\windows\system32\drivers\ew_juextctrl.sys
2014-09-17 18:28:51 25856 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
2014-09-17 18:28:51 208384 ----a-w- c:\windows\system32\drivers\ew_juwwanecm.sys
2014-09-17 18:28:51 199168 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2014-09-17 18:28:51 19200 ----a-w- c:\windows\system32\drivers\ew_hwupgrade.sys
2014-09-17 18:28:51 11904 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys
2014-09-17 18:28:51 101248 ----a-w- c:\windows\system32\drivers\ew_jucdcacm.sys
2014-09-17 16:06:21 -------- d-----w- c:\users\psio\appdata\local\My Games
2014-09-16 21:47:50 -------- d-----w- c:\programdata\CharJi EVO
2014-09-16 21:47:20 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2014-09-16 21:47:20 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2014-09-16 21:46:35 -------- d-----w- c:\program files\CharJi EVO
2014-09-16 21:46:19 -------- d-----w- c:\programdata\DatacardService
2014-09-05 01:41:41 62576 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{989a0a3e-6ddc-4b43-abf7-d292f42182b1}\offreg.dll
.
==================== Find3M ====================
.
2014-09-14 22:33:51 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-14 22:33:51 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
.
============= FINISH: 15:02:07.79 ===============
I have had posted here before and have my problems resolved, i am having one again, I am experiencing slow browsing, even the GMER.exe had to be downloaded via a VPN.
-------------------------------------------------------------------------------
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.7600.16385
Run by Psio at 15:01:25 on 2014-09-18
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3317.1913 [GMT 5:00]
.
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\atiesrxx.exe
C:\Program Files\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\ProgramData\CharJi EVO\OnlineUpdate\ouc.exe
C:\Program Files\Hotspot Shield\bin\cmw_srv.exe
C:\ProgramData\DatacardService\HWDeviceService.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\ProgramData\MobileBrServ\mbbservice.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\Ctxfihlp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files\CharJi EVO\CharJi EVO.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Razer\Lachesis 5600\LachesisSysTray.exe
C:\Windows\vmsnap3.exe
C:\Windows\Domino.exe
C:\Users\Psio\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\SYSTEM32\CTXFISPI.EXE
C:\Program Files\Hotspot Shield\bin\hsscp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Hotspot Shield\bin\af_proxy_cmd.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Hotspot Shield\bin\openvpn.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Hotspot Shield\bin\fbwmgr.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Hotspot Shield\bin\fbw.exe
C:\Program Files\Hotspot Shield\bin\fbw.exe
C:\Program Files\Hotspot Shield\bin\fbw.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\sppsvc.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.us.com/v/2/?guid={F3EFB0A8-424E-4713-8C76-039B4347E9CA}&serpv=17
uDefault_Page_URL = hxxp://search.us.com/v/2/?guid={F3EFB0A8-424E-4713-8C76-039B4347E9CA}&serpv=17
uProxyServer = hxxp=127.0.0.1:8555;https=127.0.0.1:8555
uProxyOverride = <local>127.0.0.1;localhost;10.*;192.168.*;127.0.0.1:895;127.0.0.1:896
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
uRun: [uTorrent] "c:\users\psio\appdata\roaming\utorrent\uTorrent.exe" /MINIMIZED
uRun: [Wondershare Helper Compact.exe] "c:\program files\common files\wondershare\wondershare helper compact\WSHelperSetup.exe"
uRun: [GoogleChromeAutoLaunch_155C386C43597D4A43CA95FE82403925] "c:\program files\google\chrome\application\chrome.exe" --no-startup-window
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [Razer Lachesis Driver] c:\program files\razer\lachesis 5600\LachesisSysTray.exe
mRun: [VMSnap3] c:\windows\VMSnap3.exe
mRun: [Domino] c:\windows\Domino.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
TCP: NameServer = 8.8.8.8
TCP: Interfaces\{598DFB1B-A8E1-448C-81CE-6DDE08599A1D} : NameServer = 182.176.32.29 119.159.255.36
TCP: Interfaces\{64D09A72-59F2-408A-BD34-76CA52C84E0F} : DHCPNameServer = 8.8.8.8
TCP: Interfaces\{7AC50C25-A9ED-48AC-87AF-F5EFE1CB3B1D} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{9664AEDF-E8FB-42F0-B420-5AA9ED0AAA57} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{ED6E7E2E-2072-43C9-87D9-F01AEC075170} : NameServer = 210.2.181.6,210.2.177.7
TCP: Interfaces\{ED6E7E2E-2072-43C9-87D9-F01AEC075170} : DHCPNameServer = 62.113.218.106 8.8.8.8
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\37.0.2062.120\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\psio\appdata\roaming\mozilla\firefox\profiles\lx9486hm.default-1390572488719\
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\update\1.3.24.15\npGoogleUpdate3.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_15_0_0_152.dll
.
============= SERVICES / DRIVERS ===============
.
R1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\drivers\hssdrv6.sys [2014-5-17 39624]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2014-1-16 217600]
R2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\skype\toolbars\autoupdate\SkypeC2CAutoUpdateSvc.exe [2014-7-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\skype\toolbars\pnrsvc\SkypeC2CPNRSvc.exe [2014-7-14 1767520]
R2 hshld;Hotspot Shield Service;c:\program files\hotspot shield\bin\cmw_srv.exe [2014-5-17 919040]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\datacardservice\HWDeviceService.exe [2013-2-6 276048]
R2 Mobile Broadband HL Service;Mobile Broadband HL Service;c:\programdata\mobilebrserv\mbbService.exe [2014-1-28 239696]
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\intel\intel(r) management engine components\uns\UNS.exe [2014-1-16 2320920]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2014-1-16 86656]
R3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\system32\drivers\CT20XUT.sys [2011-8-22 171096]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\system32\drivers\CTEXFIFX.sys [2011-8-22 1324120]
R3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\system32\drivers\CTHWIUT.sys [2011-8-22 72792]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\drivers\e1k6232.sys [2014-1-16 224424]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2014-9-17 11904]
R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\drivers\ewusbwwan.sys [2014-9-17 381952]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2014-9-17 77824]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\drivers\taphss6.sys [2014-5-7 37064]
S2 CharJi EVO. RunOuc;CharJi EVO. OUC;c:\program files\charji evo\updatedog\ouc.exe [2014-9-17 656976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 MgAssistService;MgAssist Service;c:\program files\mobogenie\mgassist.exe --> c:\program files\mobogenie\MgAssist.exe [?]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2014-4-3 315008]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\common files\creative labs shared\service\CTAELicensing.exe [2014-1-16 79360]
S3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.sys [2011-8-22 171096]
S3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.sys [2011-8-22 1324120]
S3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.sys [2011-8-22 72792]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [2014-4-28 80184]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2014-9-17 95232]
S3 vvftav303;vvftav303;c:\windows\system32\drivers\vvftav303.sys [2014-6-2 480128]
S3 ZSMC0303;A4 TECH PC Camera H;c:\windows\system32\drivers\usbVM303.sys [2014-6-2 1472768]
.
=============== Created Last 30 ================
.
2014-09-17 18:28:51 95232 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys
2014-09-17 18:28:51 861696 ----a-w- c:\windows\system32\drivers\mod7700.sys
2014-09-17 18:28:51 77824 ----a-w- c:\windows\system32\drivers\ew_jubusenum.sys
2014-09-17 18:28:51 70528 ----a-w- c:\windows\system32\drivers\ew_jucdcecm.sys
2014-09-17 18:28:51 381952 ----a-w- c:\windows\system32\drivers\ewusbwwan.sys
2014-09-17 18:28:51 27776 ----a-w- c:\windows\system32\drivers\ew_juextctrl.sys
2014-09-17 18:28:51 25856 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
2014-09-17 18:28:51 208384 ----a-w- c:\windows\system32\drivers\ew_juwwanecm.sys
2014-09-17 18:28:51 199168 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2014-09-17 18:28:51 19200 ----a-w- c:\windows\system32\drivers\ew_hwupgrade.sys
2014-09-17 18:28:51 11904 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys
2014-09-17 18:28:51 101248 ----a-w- c:\windows\system32\drivers\ew_jucdcacm.sys
2014-09-17 16:06:21 -------- d-----w- c:\users\psio\appdata\local\My Games
2014-09-16 21:47:50 -------- d-----w- c:\programdata\CharJi EVO
2014-09-16 21:47:20 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2014-09-16 21:47:20 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2014-09-16 21:46:35 -------- d-----w- c:\program files\CharJi EVO
2014-09-16 21:46:19 -------- d-----w- c:\programdata\DatacardService
2014-09-05 01:41:41 62576 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{989a0a3e-6ddc-4b43-abf7-d292f42182b1}\offreg.dll
.
==================== Find3M ====================
.
2014-09-14 22:33:51 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-14 22:33:51 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
.
============= FINISH: 15:02:07.79 ===============