Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Help please!

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Help please!

Unread postby Kostas » December 7th, 2013, 12:41 pm


My computer begun to work very slow in the last couple of weeks.I`m using this computer just to play the world of tanks game and to surf the net reading online newspapers and checking emails.So when i`m surfing the net the computer works great.It is very fast i can open all pages right away and how many pages i want.But when i try to play that game doesn`t work anymore.Two months ago the game worked fine but from day to day started to work bad.So in the last two months i bought a new cooler for the video card because of the heat.It worked very nice one week then started to not work again. Then i replaced the RAM`s and installed again windows.Worked again very good in that game till a few weeks ago when the game started to run in slow motion.First i set up the game to minimum settings and started to work not like before but was acceptable.Now yesterday was running very bad.So i didn`t know what to do anymore and i said maybe i should clean the computer a little.And i opened and cleaned it.But after that the game was even worst.Till now was like in frames,slow motion, now the game stop for a few seconds and then work again 1-2 seconds and stops again.Its unplayable. I just can`t understand why every day more the game goes bad.I thank you in advance for any help and looking forward for your answers.

Here are the DDS logs :

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.7600.16385
Run by Kostas at 18:05:15 on 2013-12-07
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.3071.2081 [GMT 2:00]
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
============== Running Processes ================
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Opera\15.0.1147.153\opera.exe
C:\Program Files\Opera\15.0.1147.153\opera_crashreporter.exe
C:\Program Files\Opera\15.0.1147.153\opera.exe
C:\Program Files\Opera\15.0.1147.153\opera.exe
C:\Program Files\Opera\15.0.1147.153\opera.exe
C:\Program Files\Opera\15.0.1147.153\opera.exe
C:\Program Files\Opera\15.0.1147.153\opera.exe
C:\Program Files\Opera\15.0.1147.153\opera.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\svchost.exe -k secsvcs
============== Pseudo HJT Report ===============
uStart Page = about:blank
uURLSearchHooks: YTNavAssistPlugin Class: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
mRun: [Nvtmru] "c:\program files\nvidia corporation\nvidia update core\nvtmru.exe"
mRun: [ShadowPlay] c:\windows\system32\rundll32.exe c:\windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
mRun: [NvBackend] "c:\program files\nvidia corporation\update core\NvBackend.exe"
dRun: [Bitdefender Wallet Agent] "c:\program files\bitdefender\bitdefender\pmbxag.exe"
dRun: [Bitdefender Wallet] "c:\program files\bitdefender\bitdefender\pwdmanui.exe" --hidden --nowizard
dRun: [Bitdefender Wallet Application Agent] "c:\program files\bitdefender\bitdefender\bdapppassmgr.exe"
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
TCP: NameServer =
TCP: Interfaces\{CAA04AD8-8B3D-4DA9-986A-1A7D2D7277E8} : DHCPNameServer =
SSODL: WebCheck - <orphaned>
IFEO: AcroRd32.exe - "c:\program files\tuneup utilities 2014\TUAutoReactivator32.exe"
IFEO: dw20.exe - "c:\program files\tuneup utilities 2014\TUAutoReactivator32.exe"
IFEO: excel.exe - "c:\program files\tuneup utilities 2014\TUAutoReactivator32.exe"
IFEO: fileshred.exe - "c:\program files\tuneup utilities 2014\TUAutoReactivator32.exe"
IFEO: finder.exe - "c:\program files\tuneup utilities 2014\TUAutoReactivator32.exe"
Note: multiple IFEO entries found. Please refer to Attach.txt
============= SERVICES / DRIVERS ===============
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2013-11-1 243128]
R2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys [2011-1-10 95744]
R2 NvNetworkService;NVIDIA Network Service;c:\program files\nvidia corporation\netservice\NvNetworkService.exe [2013-12-3 1370912]
R2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe [2013-10-28 14657824]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2013-11-11 414496]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2014\TuneUpUtilitiesService32.exe [2013-10-30 1739576]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-12-3 34080]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2014\TuneUpUtilitiesDriver32.sys [2013-8-21 12320]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2013-10-29 27192]
S4 DokanMounter;DokanMounter;c:\program files\dokan\dokanlibrary\mounter.exe [2011-1-10 14848]
S4 TeamViewer8;TeamViewer 8;c:\program files\teamviewer\version8\TeamViewer_Service.exe [2013-9-14 5087584]
S4 tepsrv;Tracks Eraser Service;c:\program files\acesoft\tracks eraser pro\tepsrv.exe [2013-10-14 38184]
=============== File Associations ===============
ShellExec: Opera.exe: open="c:\program files\opera\Launcher.exe" "%1"
=============== Created Last 30 ================
2013-12-02 22:17:20 34080 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2013-11-20 08:29:38 -------- d-----w- c:\users\kostas.kostas-\appdata\local\Google
2013-11-19 18:28:55 893728 ----a-w- c:\windows\system32\nvdispgenco3233182.dll
2013-11-19 18:28:55 1049888 ----a-w- c:\windows\system32\nvdispco3233182.dll
2013-11-19 18:28:54 9663656 ----a-w- c:\windows\system32\nvcuda.dll
2013-11-19 18:28:54 9619872 ----a-w- c:\windows\system32\nvopencl.dll
2013-11-19 18:28:54 609568 ----a-w- c:\windows\system32\NvFBC.dll
2013-11-19 18:28:54 562464 ----a-w- c:\windows\system32\NvIFR.dll
2013-11-19 18:28:54 2947872 ----a-w- c:\windows\system32\nvcuvid.dll
2013-11-19 18:28:54 2747680 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-11-19 18:28:54 22951200 ----a-w- c:\windows\system32\nvoglv32.dll
2013-11-19 18:28:54 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-11-19 18:28:54 10446112 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-11-19 18:25:53 -------- d-----w- c:\users\kostas.kostas-\appdata\local\NVIDIA Corporation
2013-11-11 06:59:28 590112 ----a-w- c:\windows\system32\nvStreaming.exe
2013-11-07 17:39:05 -------- d-----w- c:\programdata\Kaspersky Lab
==================== Find3M ====================
2013-11-29 16:56:57 979744 ----a-w- c:\windows\system32\nvspcap.dll
2013-11-20 08:29:30 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-11-20 08:29:30 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-11-14 11:55:59 53024 ----a-w- c:\windows\system32\OpenCL.dll
2013-11-14 11:55:59 15862272 ----a-w- c:\windows\system32\nvwgf2um.dll
2013-11-14 11:55:56 15218504 ----a-w- c:\windows\system32\nvd3dum.dll
2013-11-14 11:55:54 2697248 ----a-w- c:\windows\system32\nvapi.dll
2013-11-11 14:26:52 4321056 ----a-w- c:\windows\system32\nvcpl.dll
2013-11-11 14:26:52 3036960 ----a-w- c:\windows\system32\nvsvc.dll
2013-11-11 14:26:50 664352 ----a-w- c:\windows\system32\nvvsvc.exe
2013-11-11 14:26:50 62752 ----a-w- c:\windows\system32\nvshext.dll
2013-11-11 14:26:50 209184 ----a-w- c:\windows\system32\nvmctray.dll
2013-11-01 07:50:08 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-10-30 17:02:56 32544 ----a-w- c:\windows\system32\nvaudcap32v.dll
2013-10-30 13:21:49 254435 ----a-w- c:\programdata\1383139221.bdinstall.bin
2013-10-30 09:45:44 36664 ----a-w- c:\windows\system32\TURegOpt.exe
2013-10-30 09:45:38 36152 ----a-w- c:\windows\system32\uxtuneup.dll
2013-10-30 09:45:38 25400 ----a-w- c:\windows\system32\authuitu.dll
2013-10-29 19:25:03 534945 ----a-w- c:\programdata\1383074492.bdinstall.bin
2013-10-29 18:57:49 270825 ----a-w- c:\programdata\1383072958.bdinstall.bin
2013-10-29 18:57:42 50007 ----a-w- c:\programdata\1383073046.bdinstall.bin
2013-10-29 18:44:58 527213 ----a-w- c:\programdata\1383072017.bdinstall.bin
2013-10-29 18:33:04 59738 ----a-w- c:\programdata\1383071580.bdinstall.bin
2013-10-29 18:31:59 271723 ----a-w- c:\programdata\1383071460.bdinstall.bin
2013-10-23 10:24:25 893728 ----a-w- c:\windows\system32\nvdispgenco3233165.dll
2013-10-23 10:24:25 1049888 ----a-w- c:\windows\system32\nvdispco3233165.dll
2013-10-10 00:02:06 17750408 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
============= FINISH: 18:05:32.29 ===============

DDS (Ver_2012-11-20.01)
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 8/17/2013 2:38:22 AM
System Uptime: 12/7/2013 5:57:33 PM (1 hours ago)
Motherboard: MSI | | MS-7346
Processor: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz | CPU 1 | 2394/267mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 98 GiB total, 81.415 GiB free.
D: is FIXED (NTFS) - 200 GiB total, 68.289 GiB free.
E: is CDROM ()
F: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID: {4d36e96b-e325-11ce-bfc1-08002be10318}
Description: Standard PS/2 Keyboard
Device ID: ACPI\PNP0303\4&3816A047&0
Manufacturer: (Standard keyboards)
Name: Standard PS/2 Keyboard
PNP Device ID: ACPI\PNP0303\4&3816A047&0
Service: i8042prt
Class GUID: {4d36e96f-e325-11ce-bfc1-08002be10318}
Description: Microsoft PS/2 Mouse
Device ID: ACPI\PNP0F03\4&3816A047&0
Manufacturer: Microsoft
Name: Microsoft PS/2 Mouse
PNP Device ID: ACPI\PNP0F03\4&3816A047&0
Service: i8042prt
==== System Restore Points ===================
RP30: 12/4/2013 9:39:06 PM - Scheduled Checkpoint
==== Image File Execution Options =============
IFEO: AcroRd32.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: dw20.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: excel.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: fileshred.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: finder.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: infopath.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: liveupdate.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: msaccess.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: msoxmled.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: mspub.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: mspview.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: mstore.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: ois.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: outlook.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: pluginmaker.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: powerpnt.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: proflwiz.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: te.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: unins000.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: winword.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IFEO: yahoomessenger.exe - "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
==== Installed Programs ======================
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.05)
BS.Player FREE
DAEMON Tools Lite
Dokan Library 0.6.0
Football Manager 2014
GeForce Experience NvStream Client Components
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
NVIDIA 3D Vision Controller Driver 331.82
NVIDIA 3D Vision Driver 331.82
NVIDIA Control Panel 331.82
NVIDIA GeForce Experience 1.8
NVIDIA Graphics Driver 331.82
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX System Software 9.13.0725
NVIDIA ShadowPlay 10.10.5
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 10.10.5
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.12
Opera Stable 15.0.1147.153
Revo Uninstaller Pro 3.0.7
SHIELD Streaming
TeamViewer 8
Tracks Eraser Pro v8.88 build 1005
TuneUp Utilities 2014
TuneUp Utilities 2014 (en-US)
Winamp Detector Plug-in
WinRAR 4.20 (32-bit)
World of Tanks
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar
==== End Of File ===========================
Active Member
Posts: 1
Joined: December 7th, 2013, 12:16 pm
Register to Remove

Re: Help please!

Unread postby Cypher » December 9th, 2013, 12:34 pm

Operating Systems no longer supported by Microsoft
It appears you are using a computer with an unsupported Operating System.

May I draw your attention to the topic: ALL USERS OF THIS FORUM MUST READ THIS FIRST, which you should have read before posting for help.

The section here explains why we do not offer help for such computers. Thank you for your understanding.

This topic is now closed.
User avatar
Posts: 14936
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns

Return to Infected? Virus, malware, adware, ransomware, oh my!

Who is online

Users browsing this forum: No registered users and 11 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware