Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Really slow internet

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Really slow internet

Unread postby h0thman » July 13th, 2014, 12:07 am

My internet has been slow for a while now. I recently started getting service from Centurylink.
My router model number is C1000A. My ISP says the service is 20 mbps.
I have two computers, both running win 7, an ipad 3, and an android phone on the network usually.
Anytime I try to run a game like tf2, i get severe lag up to where I can almost not play the game. Here is an example of my lagging. (Ignore the flashing screen. That was just my recording software.): https://www.youtube.com/watch?v=kuBqTC5NyZc
If I try to play minecraft, once I mine a block, I have to wait about 10 seconds untill I pick it up.

DDS log:

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: BrowserJavaVersion: 10.60.2
Run by OMEGA at 22:48:41 on 2014-07-12
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.6039.2772 [GMT -5:00]
.
AV: Norton AntiVirus Online *Enabled/Updated* {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
SP: Norton AntiVirus Online *Enabled/Updated* {631E4324-D31C-783F-EC5C-35AD42B18466}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k apphost
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
C:\Program Files (x86)\Norton AntiVirus\Engine\21.4.0.13\NAV.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
C:\Program Files (x86)\AlienRespawn\sftservice.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k iissvcs
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Norton AntiVirus\Engine\21.4.0.13\NAV.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\AlienRespawn\TOASTER.EXE
C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Evaer\videochannel.exe
C:\Program Files (x86)\CenturyLink\Desktop\CenturyLinkTouchPointAgent.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\iTunes\iTunes.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files (x86)\Java\jre7\bin\javaw.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Java\jre7\bin\javaw.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.yahoo.com?type=293224&fr=spigot-yhp-ie
uDefault_Page_URL = hxxp://dell13.msn.com
mWinlogon: Userinit = userinit.exe
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton AntiVirus\Engine\21.4.0.13\ips\ipsbho.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
uRun: [avichannel] "C:\Program Files (x86)\Evaer\videochannel.exe"
mRun: [CenturyLinkTouchPointAgent] "C:\Program Files (x86)\CenturyLink\Desktop\CenturyLinkTouchPointAgent.exe" /autostart
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: NameServer = 192.168.0.1 205.171.2.25
TCP: Interfaces\{0B0B8176-C0FA-4314-A6B7-3D502C7CEE3A} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{BCF119AB-1C2B-48D9-A8CC-9700B51E840D} : DHCPNameServer = 192.168.0.1 205.171.2.25
TCP: Interfaces\{BCF119AB-1C2B-48D9-A8CC-9700B51E840D}\3456E647572797C496E6B663434383 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{BCF119AB-1C2B-48D9-A8CC-9700B51E840D}\43230324C616A7569647 : DHCPNameServer = 192.168.0.1 205.171.2.25
TCP: Interfaces\{BCF119AB-1C2B-48D9-A8CC-9700B51E840D}\84F4D454D264542423 : DHCPNameServer = 75.75.76.76 75.75.75.75
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX4
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\OMEGA\AppData\Roaming\Mozilla\Firefox\Profiles\39kaoh9y.default\
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dll
FF - plugin: C:\Users\OMEGA\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
FF - plugin: C:\Users\OMEGA\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 SymDS;Symantec Data Store;C:\Windows\System32\drivers\NAVx64\1504000.00D\symds64.sys [2014-7-11 493656]
R0 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\drivers\NAVx64\1504000.00D\symefa64.sys [2014-7-11 1148120]
R1 {9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64;{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64;C:\Windows\System32\drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys [2014-5-12 61112]
R1 BHDrvx64;BHDrvx64;C:\Program Files (x86)\Norton AntiVirus\NortonData\21.1.0.18\Definitions\BASHDefs\20140703.001\BHDrvx64.sys [2014-7-9 1530160]
R1 ccSet_NAV;NAV Settings Manager;C:\Windows\System32\drivers\NAVx64\1504000.00D\ccsetx64.sys [2014-7-11 162392]
R1 IDSVia64;IDSVia64;C:\Program Files (x86)\Norton AntiVirus\NortonData\21.1.0.18\Definitions\IPSDefs\20140711.001\IDSviA64.sys [2014-7-11 525016]
R1 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\NAVx64\1504000.00D\ironx64.sys [2014-7-11 264280]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\drivers\NAVx64\1504000.00D\symnets.sys [2014-7-11 593112]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-6-23 2524496]
R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-4-15 377616]
R2 NAV;Norton AntiVirus;C:\Program Files (x86)\Norton AntiVirus\Engine\21.4.0.13\nav.exe [2014-7-11 262968]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-1-22 1631008]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-9-22 21055432]
R2 RzKLService;RzKLService;C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2013-9-29 105448]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\AlienRespawn\SftService.exe [2013-3-21 1695040]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-5-27 413128]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-6-15 142128]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2013-3-21 331264]
R3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-5-26 20256]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-5-26 40392]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-3-21 539240]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S3 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 libusb0;libusb-win32 - Kernel Driver 02/07/2014 0.0.0.0;C:\Windows\System32\drivers\libusb0.sys [2014-2-6 52832]
S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;C:\Windows\System32\drivers\MijXfilt.sys [2014-5-31 115272]
S3 NTIOLib_X64;NTIOLib_X64;C:\Program Files (x86)\msi\ODD Monitor\NTIOLib_X64.sys [2010-1-18 14136]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver;C:\Windows\System32\drivers\nvstusb.sys [2013-3-21 448288]
S3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0);C:\Windows\System32\drivers\rusb3hub.sys [2013-3-21 100352]
S3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0);C:\Windows\System32\drivers\rusb3xhc.sys [2013-3-21 216064]
S3 rzjoystk;Razer VJoystick;C:\Windows\System32\drivers\rzjoystk.sys [2011-3-24 19968]
S3 rzjstk;Razer Virtual Joystick Driver;C:\Windows\System32\drivers\rzjstk.sys [2013-9-13 27832]
S3 rzkeypadendpt;Razer Keypad Endpoint;C:\Windows\System32\drivers\rzkeypadendpt.sys [2013-9-13 32952]
S3 rzudd;Razer Mouse Driver;C:\Windows\System32\drivers\rzudd.sys [2013-9-13 142008]
S3 ScpVBus;Scp Virtual Bus Driver;C:\Windows\System32\drivers\ScpVBus.sys [2014-5-29 39168]
S3 t_mouse.sys;HID-compliand device;C:\Windows\System32\drivers\t_mouse.sys [2012-12-19 6144]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-9-23 1255736]
S4 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2013-3-21 98208]
S4 AlienFusionService;Alienware Fusion Service;C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2012-6-18 14704]
S4 AlienFXWindowsService;AlienFXWindowsService;C:\Program Files\Alienware\Command Center\AlienFXWindowsService.exe [2012-6-18 13168]
S4 DellDigitalDelivery;Alienware Digital Delivery Service;C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2013-11-12 196616]
S4 HiPatchService;Hi-Rez Studios Authenticate and Update Service;C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [2013-10-25 9216]
S4 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448]
S4 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-3-21 163608]
S4 MSI_ODD_Service;MSI_ODD_Service;C:\Program Files (x86)\msi\ODD Monitor\ODD_Monitor.exe [2011-10-4 76800]
S4 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2014-5-27 32544]
S4 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-3-21 363800]
S4 ZAtheros Wlan Agent;ZAtheros Wlan Agent;C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [2013-3-21 73728]
.
=============== Created Last 30 ================
.
2014-07-13 03:14:58 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-07-11 16:31:52 875736 ----a-w- C:\Windows\System32\drivers\NAVx64\1504000.00D\srtsp64.sys
2014-07-11 16:31:52 593112 ----a-w- C:\Windows\System32\drivers\NAVx64\1504000.00D\symnets.sys
2014-07-11 16:31:52 493656 ----a-r- C:\Windows\System32\drivers\NAVx64\1504000.00D\symds64.sys
2014-07-11 16:31:52 36952 ----a-r- C:\Windows\System32\drivers\NAVx64\1504000.00D\srtspx64.sys
2014-07-11 16:31:52 264280 ----a-r- C:\Windows\System32\drivers\NAVx64\1504000.00D\ironx64.sys
2014-07-11 16:31:52 23568 ----a-r- C:\Windows\System32\drivers\NAVx64\1504000.00D\symelam.sys
2014-07-11 16:31:52 1148120 ----a-w- C:\Windows\System32\drivers\NAVx64\1504000.00D\symefa64.sys
2014-07-11 16:31:51 162392 ----a-r- C:\Windows\System32\drivers\NAVx64\1504000.00D\ccsetx64.sys
2014-07-11 16:31:45 -------- d-----w- C:\Windows\System32\drivers\NAVx64\1504000.00D
2014-07-08 04:49:15 -------- d-----r- C:\Users\OMEGA\Virtual Machines
2014-07-08 04:33:13 -------- d-----w- C:\Program Files\Windows XP Mode
2014-07-08 04:16:59 3584 ----a-w- C:\Windows\System32\drivers\it-IT\vpchbus.sys.mui
2014-07-07 05:19:37 -------- d-----w- C:\Users\OMEGA\AppData\Local\Blizzard
2014-07-01 18:38:20 -------- d-----w- C:\Program Files (x86)\Hearthstone
2014-07-01 18:14:14 -------- d-----w- C:\Users\OMEGA\AppData\Local\Blizzard Entertainment
2014-07-01 18:14:07 -------- d-----w- C:\Users\OMEGA\AppData\Roaming\Battle.net
2014-07-01 18:14:07 -------- d-----w- C:\Users\OMEGA\AppData\Local\Battle.net
2014-07-01 18:13:55 -------- d-----w- C:\ProgramData\Blizzard Entertainment
2014-07-01 18:13:55 -------- d-----w- C:\Program Files (x86)\Common Files\Blizzard Entertainment
2014-07-01 18:13:55 -------- d-----w- C:\Program Files (x86)\Battle.net
2014-07-01 18:10:43 -------- d-----w- C:\ProgramData\Battle.net
2014-06-29 03:08:28 -------- d-----w- C:\Users\OMEGA\AppData\Local\FalloutNV
2014-06-24 13:02:20 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi
2014-06-23 05:21:41 -------- d-----w- C:\NVIDIA Corporation
2014-06-20 06:14:42 -------- d-----w- C:\Users\OMEGA\AppData\Local\Nem's Tools
2014-06-20 06:14:37 -------- d-----w- C:\Program Files\Nem's Tools
2014-06-17 19:58:43 -------- d-----w- C:\Users\OMEGA\AppData\Roaming\MotioninJoy
2014-06-17 19:58:21 328712 ----a-w- C:\Windows\System32\MijFrc.dll
2014-06-17 19:58:20 -------- d-----w- C:\Program Files\MotioninJoy
2014-06-15 21:48:31 -------- d-----w- C:\Users\OMEGA\AppData\Local\ESN
2014-06-15 21:48:29 -------- d-----w- C:\Program Files (x86)\Battlelog Web Plugins
2014-06-15 08:19:49 -------- d--h--w- C:\Program Files (x86)\Common Files\EAInstaller
2014-06-14 05:11:45 -------- d-----w- C:\Users\OMEGA\AppData\Local\DerpRadar_Loader
2014-06-14 04:39:13 -------- d-----w- C:\Users\OMEGA\AppData\Local\The Witcher 2
2014-06-14 00:37:50 24576 ----a-w- C:\NewFistfulChams.dll
.
==================== Find3M ====================
.
2014-06-15 08:19:37 281872 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2014-06-15 08:19:30 281872 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2014-06-15 08:19:23 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2014-06-13 02:32:45 177752 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2014-05-29 23:07:51 1291232 ----a-w- C:\Windows\SysWow64\nvspbridge.dll
2014-05-29 23:07:51 1122312 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2014-05-29 23:07:38 1715176 ----a-w- C:\Windows\System32\nvspbridge64.dll
2014-05-29 23:07:38 1279480 ----a-w- C:\Windows\System32\nvspcap64.dll
2014-05-20 01:25:42 6769096 ----a-w- C:\Windows\System32\nvcpl.dll
2014-05-20 01:25:42 3514144 ----a-w- C:\Windows\System32\nvsvc64.dll
2014-05-20 01:25:39 927520 ----a-w- C:\Windows\System32\nvvsvc.exe
2014-05-20 01:25:38 76064 ----a-w- C:\Windows\System32\nv3dappshextr.dll
2014-05-20 01:25:38 62808 ----a-w- C:\Windows\System32\nvshext.dll
2014-05-20 01:25:38 387528 ----a-w- C:\Windows\System32\nvmctray.dll
2014-05-20 01:25:38 1078616 ----a-w- C:\Windows\System32\nv3dappshext.dll
2014-05-19 23:10:44 601432 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2014-05-14 23:49:42 3774821 ----a-w- C:\Windows\System32\nvcoproc.bin
2014-05-09 22:03:36 61112 ----a-w- C:\Windows\System32\drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys
2013-09-22 16:45:05 1130576 ----a-w- C:\Program Files (x86)\utorrent.exe
.
============= FINISH: 22:49:49.02 ===============



Attach Log:

DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 9/21/2013 11:59:42 AM
System Uptime: 7/12/2014 10:18:51 PM (0 hours ago)
.
Motherboard: Alienware | | 06G6JW
Processor: Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz | CPU 1 | 3300/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 917 GiB total, 272.978 GiB free.
D: is CDROM ()
F: is CDROM (UDF)
.
==== Disabled Device Manager Items =============
.
Class GUID:
Description: Universal Serial Bus (USB) Controller
Device ID: PCI\VEN_1912&DEV_0015&SUBSYS_05271028&REV_02\4&2991A0EA&0&00E1
Manufacturer:
Name: Universal Serial Bus (USB) Controller
PNP Device ID: PCI\VEN_1912&DEV_0015&SUBSYS_05271028&REV_02\4&2991A0EA&0&00E1
Service:
.
==== System Restore Points ===================
.
RP161: 7/10/2014 5:43:29 PM - Scheduled Checkpoint
RP162: 7/12/2014 10:13:54 PM - Installed Java 7 Update 60
.
==== Installed Programs ======================
.
µTorrent
7-Zip 9.20
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Help Center 1.0
Adobe Photoshop CS2
Adobe Reader XI (11.0.07)
Adobe Stock Photos 1.0
AlienAutopsy
AlienRespawn
AlienRespawn - Support Software
Alienware Command Center
Alienware Customer Surveys
Alienware Digital Delivery
Amnesia: The Dark Descent
APB Reloaded
Apple Application Support
Apple Mobile Device Support
Apple Software Update
As Simple As Photoshop 7.0 (Demo)
Audacity 2.0.5
Battle.net
Battlefield 3™
Battlelog Web Plugins
BioShock
BioShock Infinite
Blacklight: Retribution
Bonjour
Borderlands 2
Botanicula
Camtasia Studio 8
CCleaner
CenturyLink Installer
Cheat Engine 6.3
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Counter-Strike: Global Offensive
Counter-Strike: Source
Crysis 2 Maximum Edition
Dead Space
Dead Space™
Dead Space™ 3
Dell Wireless Driver Installation
Dishonored
Dota 2
Evaer Video Recorder for Skype 1.5.1.17
Facebook Video Calling 2.0.0.447
Fallout
Fallout 2
Fallout 3 - Game of the Year Edition
Fallout Tactics
Fallout: New Vegas
Far Cry® 3 Blood Dragon
Feathercoin 0.8.5
FEZ
Fistful of Frags
Fraps (remove only)
FTL: Faster Than Light
Garry's Mod
GCFScape 1.8.5
GIMP 2.8.10
GOG.com Downloader version 3.6.0
Google Chrome
Google Update Helper
Half-Life 2
Half-Life 2: Episode One
Half-Life 2: Episode Two
Half-Life 2: Lost Coast
HAWKEN
Hearthstone
Hi-Rez Studios Authenticate and Update Service
iCloud
Intel(R) Management Engine Components
Intel(R) OpenCL CPU Runtime
Intel(R) Processor Graphics
Intel® Trusted Connect Service Client
iTunes
Java 7 Update 60
Java Auto Updater
LAME v3.99.3 (for Windows)
Latency Optimizer FREE VERSION
Left 4 Dead 2
LIMBO
Litecoin
LogMeIn Hamachi
Malwarebytes Anti-Malware version 1.75.0.1300
Medal of Honor(TM) Multiplayer
Medal of Honor(TM) Single Player
Metro 2033
Metro: Last Light
Microsoft .NET Framework 4.5
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)
Microsoft Games for Windows - LIVE Redistributable
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Xbox 360 Accessories 1.2
Microsoft XNA Framework Redistributable 4.0
Might & Magic: Duel of Champions
mIRC
Mirror's Edge
MotioninJoy Gamepad tool 0.7.0000
Mozilla Firefox 26.0 (x86 en-US)
Mozilla Maintenance Service
MSI Afterburner 2.3.1
MSI ODD Monitor
MultiBit 0.5.16
Mumble 1.2.4
Norton AntiVirus
Notepad++
NVIDIA 3D Vision Controller Driver 337.88
NVIDIA 3D Vision Driver 337.88
NVIDIA Control Panel 337.88
NVIDIA GeForce Experience 2.1
NVIDIA Graphics Driver 337.88
NVIDIA HD Audio Driver 1.3.30.1
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA Optimus Update 14.6.22
NVIDIA PhysX
NVIDIA PhysX System Software 9.13.1220
NVIDIA ShadowPlay 14.6.22
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 14.6.22
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.23
Open Broadcaster Software
OpenAL
OpenOffice 4.1.0
Origin
ORION: Dino Horde
Peggle
PlanetSide 2
Portal
Portal 2
POSTAL 2 Complete
PunkBuster Services
QualxServ Service Agreement
QuickTime 7
Razer Game Booster
Razer Nostromo
Razer Nostromo Firmware Updater
Razer Synapse 2.0
Realtek High Definition Audio Driver
Rust
RWBY GE
Search Protection
Security Update for Microsoft .NET Framework 4.5 (KB2737083)
Security Update for Microsoft .NET Framework 4.5 (KB2742613)
Security Update for Microsoft .NET Framework 4.5 (KB2789648)
Security Update for Microsoft .NET Framework 4.5 (KB2804582)
Security Update for Microsoft .NET Framework 4.5 (KB2833957)
Security Update for Microsoft .NET Framework 4.5 (KB2840642v2)
Security Update for Microsoft .NET Framework 4.5 (KB2931368)
SHIELD Streaming
SixaxisPairTool 0.2.5
Skype™ 6.16
Steam
Team Fortress 2
TeamSpeak 3 Client
Terraria
The Binding of Isaac
The Elder Scrolls V: Skyrim
The Stanley Parable
The Witcher 2: Assassins of Kings Enhanced Edition
Thief Gold
Thomas Was Alone
Trine 2
UltraISO Premium V9.53
Unity Web Player
Uplay
VLC media player 2.1.2
WhatPulse version 2.3.1
Windows XP Mode
WinPcap 4.1.3
WinRAR 5.00 (64-bit)
XSplit Gamecaster
.
==== Event Viewer Messages From Past Week ========
.
7/9/2014 5:52:20 PM, Error: bowser [8003] - The master browser has received a server announcement from the computer REDLAPTOP that believes that it is the master browser for the domain on transport NetBT_Tcpip_{BCF119AB-1C2B-48D9-A8CC-9700B51E840D}. The master browser is stopping or an election is being forced.
7/9/2014 1:33:42 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
7/12/2014 10:40:42 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
.
==== End Of File ===========================
h0thman
Active Member
 
Posts: 3
Joined: July 12th, 2014, 11:46 pm
Advertisement
Register to Remove

Re: Really slow internet

Unread postby pgmigg » July 15th, 2014, 11:05 pm

Hello h0thman,

Welcome to the forum! :)

I am pgmigg and I'll be helping you with any malware problems.

Before we begin, please read and follow these important guidelines, so things will proceed smoothly.
  1. The instructions being given are for YOUR computer and system only!
    Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  2. You must have Administrator rights, permissions for this computer.
  3. DO NOT run any other fix or removal tools unless instructed to do so!
  4. DO NOT install any other software (or hardware) during the cleaning process until we are done as well as
    DO NOT Remove, or Scan with anything on your system unless I ask. This adds more items to be researched.
    Extra Additions and Removals of files make the analysis more difficult.
  5. Only post your problem at (1) one help site. Applying fixes from multiple help sites can cause problems.
  6. Print each set of instructions if possible - your Internet connection will not be available during some fix processes.
  7. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
  8. Only reply to this thread, do not start another one. Please, continue responding, until I give you the "All Clean!" :cheers:
    Absence of symptoms does not mean that everything is clear.

I am currently reviewing your logs and will return, as soon as possible, with additional instructions. In the meantime...

Note: If you haven't done so already, please read this topic ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.

Please read all instructions carefully before executing and perform the steps, in the order given.
lf you have any questions or problems executing these instructions, <<STOP>> do not proceed, post back with the question or problem.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start


Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Really slow internet

Unread postby pgmigg » July 15th, 2014, 11:53 pm

Hello h0thman,

P2P Advisory!
IMPORTANT: There are signs of one or more P2P (Peer to Peer) File Sharing Programs installed on your computer.
µTorrent
As long as you have the P2P program(s) installed, per Forum Policy, I can offer you no further assistance.
If you choose NOT to remove the program(s), please indicate that in your next reply and this topic will be closed.

Otherwise, please perform the following steps:

Remove P2P Program(s)
  1. Click on Start, then click the Start Search box on the Start Menu.
  2. Click on 'Select all', then copy and paste the value below into the open text entry box:
    Code: Select all
     appwiz.cpl 
    and press Enter - the Unistall or change a program list will be opened.
  3. Locate the following program:
    µTorrent
  4. Click on the Change/Remove button to uninstall it.
    Repeat steps 2 and 3 for each program listed.
  5. When the program(s) have been uninstalled, please close Control Panel
  6. Reboot (restart) your computer.
By using any form of P2P networking to download files you can anticipate infestations of malware to occur. The P2P program
itself, may be safe but the files may not - use P2P at your own risk!
Keep in mind that this practice may be the source of your current malware infestation.
Reference... siting risk factors, using P2P programs: How to Prevent the Online Invasion of Spyware and Adware

Then:
Run CKScanner
  1. Please download CKScanner from Here
  2. Important: - Save it to your Desktop.
  3. Double-click CKScanner.exe and click Search For Files.
  4. After a very short time, when the cursor hourglass disappears, click Save List To File.
  5. A message box will verify the file saved.
  6. Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply.

And finally now:
Please tell me is this computer used for business purposes and connected to a business or educational network?
I need to know it - so I can provide the proper instructions.

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Your decision about P2P programs
  3. Contents of CKFiles.txt log file
  4. Answers to my question related to type of using of your computer

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Really slow internet

Unread postby NonSuch » July 19th, 2014, 2:26 am

Due to a lack of response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
NonSuch
Administrator
Administrator
 
Posts: 28747
Joined: February 23rd, 2005, 7:08 am
Location: California
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 129 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware