Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Internet speed Crawling on 1 computer only


  • This topic is locked This topic is locked
3 replies to this topic

#1 puyow18

puyow18

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:11:27 PM

Posted 23 October 2010 - 06:30 PM

Not sure if this is the correct place to post this thread since I'm not sure if I have a malware problem, but here it goes:

I have a HP G60 Laptop running Win7 Premium 64bit. Intel Celeron @ 2.2GHz, 3Gig Ram, and an upgraded 320Gb HDD.
Over the last week or so I have noticed that my internet speed has been very much slower than usual. Normally, a 3min Youtube video would take a minute or two MAX to load, but now it will take well over ten minutes. I ran an online speed test and it said my download speed was peaking out at about 0.17Mbps. I ran this test with the newest version of Firefox and IE8, same results. I then ran the same tests on a different computer (same wireless network) and got download speeds of approx 1.5Mbps. Still thinking it for some reason might be the network, I reset the modem, tested again with same slow results. I even connected to a neighbors wireless network (with their permission) who has a faster speed (normally) and I still only peaked out with 0.18Mbps on my pc and almost 3Mbps on my other pc.

I am only able to connect to my network wirelessly due to it being Verizon Mobile Broadband (MiFi). So I have not been able to try a wired internet connection to see what that would do. Anyway, this is everything I have tried without any change in internet speed:

-Ran full system scan with Microsoft Security Essentials and found nothing.

-Uninstalled wireless adapter (Atheros AR9285) and restarted pc to reinstall

-Uninstalled any programs I may have installed in the last 2 weeks.

-Updated Java (was only an version or two behind before update)

-Downloaded/Installed Lavasoft Ad-Aware and ran a scan. Found a few things they called malware, but I'm not 100% sure they were malicious or the culprits. They were mostly game patches or game save builders for my Playstation 2. (scan log attached)

-Downloaded/Installed free Avira Antivirus and ran a scan. Didn't see anything malicious (scan log attached)

-Downloaded/Ran DDS and GMER. (Findings are attached and listed below as per posting rules)

Well that's all I have done to this point. I supposed I could reinstall the OS, but I really wanna save that for the ultimate last resort. Please let me know if there is any more info you need to help solve my crawling internet. Any help will be MUCH appreciated. Thank you in advance!

********Start DDS Log**************

DDS (Ver_10-10-21.02) - NTFS_AMD64
Run by Natnal at 18:20:44.77 on Sat 10/23/2010
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_22
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3003.1793 [GMT -4:00]


============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\crypserv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k HsfXAudioService
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k regsvc
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 3\AWC.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Natnal\Desktop\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uSearch Bar = Preserve
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
uInternet Settings,ProxyServer = http=72.254.128.201:80
uInternet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,
mWinlogon: Userinit=userinit.exe
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: FlashFXP Helper for Internet Explorer: {e5a1691b-d188-4419-ad02-90002030b8ee} - C:\PROGRA~2\FlashFXP\IEFlash.dll
{555d4d79-4bd2-4094-a395-cfc534424a05}
uRun: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /c
mRun: [UpdatePRCShortCut] "C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Hewlett-Packard\Recovery" UpdateWithCreateOnce "Software\CyberLink\PowerRecover"
mRun: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
mRun: [AcronisTimounterMonitor] C:\Program Files (x86)\Acronis\TrueImageHome\TimounterMonitor.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
uPolicies-system: WallpaperStyle = 2
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
dPolicies-system: WallpaperStyle = 2
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} - hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1267289680590
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
mRun-x64: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun-x64: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
mRun-x64: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
mRun-x64: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
mRun-x64: [IgfxTray] C:\Windows\system32\igfxtray.exe
mRun-x64: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
mRun-x64: [Persistence] C:\Windows\system32\igfxpers.exe
mRun-x64: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"

================= FIREFOX ===================

FF - ProfilePath - C:\Users\Natnal\AppData\Roaming\Mozilla\Firefox\Profiles\f4md7ceq.default\
FF - prefs.js: browser.search.selectedEngine - eBay
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: network.proxy.ftp - 72.254.128.201
FF - prefs.js: network.proxy.ftp_port - 80
FF - prefs.js: network.proxy.gopher - 72.254.128.201
FF - prefs.js: network.proxy.gopher_port - 80
FF - prefs.js: network.proxy.http - 72.254.128.201
FF - prefs.js: network.proxy.http_port - 80
FF - prefs.js: network.proxy.type - 1
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Natnal\AppData\Roaming\Mozilla\Firefox\Profiles\f4md7ceq.default\extensions\ietab@ip.cn\plugins\npCoralIETab.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);

============= SERVICES / DRIVERS ===============

R0 Lbd;Lbd;C:\Windows\System32\drivers\Lbd.sys [2010-10-23 69152]
R0 tdrpman228;Acronis Try&Decide and Restore Points filter (build 228);C:\Windows\System32\drivers\tdrpm228.sys [2010-10-8 1462304]
R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2009-6-18 173984]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2010-10-23 135336]
R2 HsfXAudioService;HsfXAudioService;C:\Windows\system32\svchost.exe -k HsfXAudioService [2009-7-13 27136]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2010-9-23 1357464]
R3 CAXHWAZL;CAXHWAZL;C:\Windows\System32\drivers\CAXHWAZL.sys [2009-6-24 292864]
R3 Lavasoft Kernexplorer;Lavasoft helper driver;C:\Program Files (x86)\Lavasoft\Ad-Aware\kernexplorer64.sys [2010-9-23 16928]
R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\System32\drivers\MpNWMon.sys [2009-6-18 40832]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-11-25 215040]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\System32\drivers\vwifimp.sys [2009-7-13 17920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 libusb0;LibUsb-Win32 - Kernel Driver 07/07/2009, 0.1.12.2;C:\Windows\System32\drivers\libusb0.sys [2010-5-1 32256]
S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-10 5434368]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2009-8-18 216064]
S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
S3 teamviewervpn;TeamViewer VPN Adapter;C:\Windows\System32\drivers\teamviewervpn.sys [2010-3-11 35112]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-2-26 1255736]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120]
S4 AntiVirService;Avira AntiVir Guard;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2010-10-23 267432]

============== File Associations ===============

.txt=

=============== Created Last 30 ================

2010-10-23 19:48:48 -------- d-----w- C:\Users\Natnal\AppData\Roaming\Avira
2010-10-23 19:48:44 15880 ----a-w- C:\Windows\System32\lsdelete.exe
2010-10-23 16:08:14 8006480 ----a-w- C:\PROGRA~3\Microsoft\Microsoft Antimalware\Definition Updates\{20EB48AA-DA7A-46AE-AE6F-BE65791C0A03}\mpengine.dll
2010-10-23 14:56:39 69152 ----a-w- C:\Windows\System32\drivers\Lbd.sys
2010-10-23 14:55:02 -------- dc-h--w- C:\PROGRA~3\{E961CE1B-C3EA-4882-9F67-F859B555D097}
2010-10-23 14:54:28 -------- d-----w- C:\Program Files (x86)\Lavasoft
2010-10-23 14:43:51 81072 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
2010-10-23 14:43:46 -------- d-----w- C:\Program Files (x86)\Avira
2010-10-23 14:43:46 -------- d-----w- C:\PROGRA~3\Avira
2010-10-23 01:36:34 -------- d-----w- C:\Users\Natnal\AppData\Roaming\IObit
2010-10-23 01:36:34 -------- d-----w- C:\Program Files (x86)\IObit
2010-10-23 01:06:05 -------- d-----w- C:\PROGRA~3\MFAData
2010-10-20 21:24:16 -------- d-----w- C:\Users\Natnal\AppData\Roaming\Windows Live Writer
2010-10-20 21:24:16 -------- d-----w- C:\Users\Natnal\AppData\Local\Windows Live Writer
2010-10-20 17:51:09 -------- d-----w- C:\Windows\en
2010-10-20 17:46:27 69464 ----a-w- C:\Windows\SysWow64\XAPOFX1_3.dll
2010-10-20 17:46:27 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll
2010-10-20 17:46:27 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll
2010-10-20 17:46:27 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll
2010-10-20 17:39:17 469256 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\b637185f1cb707d2d\InstallManager_WLE_WLE.exe
2010-10-20 17:38:34 15712 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\9ca7718e1cb707d22\MeshBetaRemover.exe
2010-10-20 17:37:43 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7ec74c3e1cb707d1a\DSETUP.dll
2010-10-20 17:37:43 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7ec74c3e1cb707d1a\DXSETUP.exe
2010-10-20 17:37:43 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7ec74c3e1cb707d1a\dsetup32.dll
2010-10-20 17:37:38 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7ba51c811cb707d19\DXSETUP.exe
2010-10-20 17:37:37 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7ba51c811cb707d19\DSETUP.dll
2010-10-20 17:37:37 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7ba51c811cb707d19\dsetup32.dll
2010-10-20 17:35:22 -------- d-----w- C:\Users\Natnal\AppData\Local\Windows Live
2010-10-20 17:34:04 206848 ----a-w- C:\Windows\System32\mfps.dll
2010-10-20 17:34:03 257024 ----a-w- C:\Windows\System32\mfreadwrite.dll
2010-10-20 17:34:03 196608 ----a-w- C:\Windows\SysWow64\mfreadwrite.dll
2010-10-20 17:34:02 1888256 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2010-10-20 17:34:02 1619456 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2010-10-20 17:34:01 4068864 ----a-w- C:\Windows\System32\mf.dll
2010-10-20 17:34:01 3181568 ----a-w- C:\Windows\SysWow64\mf.dll
2010-10-13 18:26:32 -------- d-----w- C:\Users\Natnal\AppData\Roaming\DVDFab
2010-10-13 18:19:34 -------- d-----w- C:\DVDFab
2010-10-13 18:08:21 99384 ----a-w- C:\Users\Natnal\AppData\Roaming\inst.exe
2010-10-13 18:08:21 82816 ----a-w- C:\Windows\System32\drivers\pcouffin.sys
2010-10-13 18:08:21 82816 ----a-w- C:\Users\Natnal\AppData\Roaming\pcouffin.sys
2010-10-13 18:08:10 -------- d-----w- C:\Program Files (x86)\DVDFab 8
2010-10-13 15:52:54 3123712 ----a-w- C:\Windows\System32\win32k.sys
2010-10-11 18:31:45 -------- d-----w- C:\Program Files (x86)\Audacity
2010-10-11 14:49:53 -------- d---a-w- C:\Users\Natnal\RosettaStone
2010-10-10 23:43:26 -------- d-----w- C:\Program Files (x86)\FlashFXP
2010-10-10 19:46:09 -------- d-----w- C:\Users\Natnal\AppData\Roaming\Hide IP NG
2010-10-10 19:35:09 202048 ----a-w- C:\Windows\SysWow64\AVLibrary.dll
2010-10-10 19:35:01 -------- d-----w- C:\Program Files (x86)\Hide The IP 2010
2010-10-10 19:34:35 -------- d-----w- C:\Users\Natnal\AppData\Local\PackageAware
2010-10-10 19:24:47 -------- d-----w- C:\PROGRA~3\Arovax
2010-10-10 19:15:09 -------- d-----w- C:\Program Files (x86)\VLC
2010-10-10 17:51:25 -------- d-----w- C:\Users\Natnal\Apps
2010-10-10 17:26:01 -------- d-----w- C:\Program Files (x86)\JDownloader
2010-10-10 03:42:08 69632 ----a-w- C:\Windows\SysWow64\Crypserv.exe
2010-10-10 03:42:08 31846 ----a-w- C:\Windows\SysWow64\Ckldrv.sys
2010-10-10 03:41:52 -------- d-----w- C:\Program Files (x86)\Stellar Phoenix Windows Data Recovery
2010-10-09 15:46:54 -------- d-----w- C:\Program Files (x86)\uTorrent
2010-10-09 15:46:31 -------- d-----w- C:\Users\Natnal\AppData\Roaming\uTorrent
2010-10-09 05:04:49 47104 ----a-w- C:\Windows\System32\drivers\scdemu.sys
2010-10-09 05:04:49 -------- d-----w- C:\Program Files (x86)\PowerISO
2010-10-09 04:43:59 -------- d-----w- C:\Users\Natnal\Ebay
2010-10-09 03:27:04 -------- d-----w- C:\Users\Natnal\Coastal Chiropractic & Acupuncture
2010-10-09 02:55:58 -------- d-----w- C:\Log
2010-10-09 02:55:37 28664 ----a-w- C:\Windows\System32\Ckldrv.sys
2010-10-09 02:55:37 27648 ----a-r- C:\Windows\Setup_ck.exe
2010-10-09 02:55:37 18432 ----a-w- C:\Windows\Setup_ck.dll
2010-10-09 02:55:37 165888 ----a-w- C:\Windows\Ckconfig.exe
2010-10-09 02:55:37 122880 ----a-w- C:\Windows\System32\Crypserv.exe
2010-10-09 02:55:37 11776 ----a-w- C:\Windows\Ckrfresh.exe
2010-10-09 01:53:21 -------- d-----w- C:\Windows\System32\catroot2
2010-10-08 21:10:01 3119896 ----a-w- C:\Windows\System32\AutoPartNt.exe
2010-10-08 15:00:49 1462304 ----a-w- C:\Windows\System32\drivers\tdrpm228.sys
2010-10-08 15:00:39 880160 ----a-w- C:\Windows\System32\drivers\timntr.sys
2010-10-08 15:00:39 83488 ----a-w- C:\Windows\System32\drivers\tifsfilt.sys
2010-10-08 15:00:32 222240 ----a-w- C:\Windows\System32\drivers\snapman.sys
2010-10-05 13:28:18 -------- d-----w- C:\PROGRA~3\Garmin
2010-10-03 17:33:09 1917344 ----a-w- C:\Windows\System32\WdfCoInstaller01005.dll
2010-10-02 14:41:07 -------- d-----w- C:\Windows\SysWow64\FxsTmp
2010-10-02 14:41:07 -------- d-----w- C:\Windows\System32\FxsTmp
2010-10-02 14:41:07 -------- d-----w- C:\Windows\addins
2010-09-29 15:11:54 243712 ----a-w- C:\Windows\System32\drivers\ks.sys
2010-09-29 15:11:54 184832 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2010-09-29 15:11:35 13312 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll
2010-09-29 15:11:34 13312 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll
2010-09-29 15:11:09 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2010-09-29 15:11:09 2048 ----a-w- C:\Windows\System32\tzres.dll

==================== Find3M ====================

2010-10-19 20:51:33 270720 ------w- C:\Windows\System32\MpSigStub.exe
2010-09-23 04:47:28 49016 ----a-w- C:\Windows\SysWow64\sirenacm.dll
2010-09-23 04:32:56 301936 ----a-w- C:\Windows\WLXPGSS.SCR
2010-09-21 18:49:02 252800 ----a-w- C:\Windows\System32\LIVESSP.DLL
2010-09-21 18:03:14 208768 ----a-w- C:\Windows\SysWow64\LIVESSP.DLL
2010-09-15 08:50:37 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2010-09-08 05:36:17 1192960 ----a-w- C:\Windows\System32\wininet.dll
2010-09-08 05:34:34 57856 ----a-w- C:\Windows\System32\licmgr10.dll
2010-09-08 04:30:04 978432 ----a-w- C:\Windows\SysWow64\wininet.dll
2010-09-08 04:28:15 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2010-09-08 04:16:38 482816 ----a-w- C:\Windows\System32\html.iec
2010-09-08 03:35:30 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2010-09-08 03:22:31 386048 ----a-w- C:\Windows\SysWow64\html.iec
2010-09-08 02:48:16 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2010-09-01 05:12:09 12625920 ----a-w- C:\Windows\System32\wmploc.DLL
2010-09-01 04:23:49 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL
2010-08-31 04:32:30 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll
2010-08-31 04:32:30 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll
2010-08-27 06:14:02 236032 ----a-w- C:\Windows\System32\srvsvc.dll
2010-08-27 05:46:48 9728 ----a-w- C:\Windows\SysWow64\sscore.dll
2010-08-27 03:38:04 463360 ----a-w- C:\Windows\System32\drivers\srv.sys
2010-08-27 03:37:48 402944 ----a-w- C:\Windows\System32\drivers\srv2.sys
2010-08-27 03:37:26 161792 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2010-08-26 05:27:28 148992 ----a-w- C:\Windows\System32\t2embed.dll
2010-08-26 04:39:58 109056 ----a-w- C:\Windows\SysWow64\t2embed.dll
2010-08-21 06:38:47 1024512 ----a-w- C:\Windows\System32\wmpmde.dll
2010-08-21 06:36:49 340992 ----a-w- C:\Windows\System32\schannel.dll
2010-08-21 06:31:06 633856 ----a-w- C:\Windows\System32\comctl32.dll
2010-08-21 06:29:47 558592 ----a-w- C:\Windows\System32\spoolsv.exe
2010-08-21 05:36:33 738816 ----a-w- C:\Windows\SysWow64\wmpmde.dll
2010-08-21 05:36:24 224256 ----a-w- C:\Windows\SysWow64\schannel.dll
2010-08-21 05:33:24 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll
2010-07-29 15:44:48 5778098 ----a-w- C:\Windows\creamplayer.exe
2010-07-29 06:30:34 82944 ----a-w- C:\Windows\SysWow64\iccvid.dll
2010-07-29 01:22:38 161304 ----a-w- C:\Windows\System32\igfxtray.exe
2010-07-29 01:22:36 508952 ----a-w- C:\Windows\System32\igfxsrvc.exe
2010-07-29 01:22:34 415256 ----a-w- C:\Windows\System32\igfxpers.exe
2010-07-29 01:22:32 386584 ----a-w- C:\Windows\System32\hkcmd.exe
2010-07-29 01:22:32 223768 ----a-w- C:\Windows\System32\igfxext.exe
2010-07-29 01:22:30 3156504 ----a-w- C:\Windows\System32\GfxUI.exe
2010-07-29 01:22:28 152600 ----a-w- C:\Windows\System32\difx64.exe
2010-07-29 01:18:58 92672 ----a-w- C:\Windows\System32\igfxCoIn_v2189.dll
2010-07-29 01:10:42 10610400 ----a-w- C:\Windows\System32\drivers\igdkmd64.sys
2010-07-29 01:10:36 6547968 ----a-w- C:\Windows\System32\igdumd64.dll
2010-07-29 01:02:54 4967424 ----a-w- C:\Windows\SysWow64\igdumd32.dll
2010-07-29 00:58:10 571904 ----a-w- C:\Windows\SysWow64\igdumdx32.dll
2010-07-29 00:55:00 4720128 ----a-w- C:\Windows\System32\igd10umd64.dll
2010-07-29 00:47:56 4411904 ----a-w- C:\Windows\SysWow64\igd10umd32.dll
2010-07-29 00:41:12 15035392 ----a-w- C:\Windows\System32\ig4icd64.dll
2010-07-29 00:32:14 11042304 ----a-w- C:\Windows\SysWow64\ig4icd32.dll
2010-07-29 00:27:58 88064 ----a-w- C:\Windows\System32\igfxrnld.lrc
2010-07-29 00:27:58 87552 ----a-w- C:\Windows\System32\igfxrfin.lrc
2010-07-29 00:27:58 87552 ----a-w- C:\Windows\System32\igfxrcsy.lrc
2010-07-29 00:27:58 87040 ----a-w- C:\Windows\System32\igfxrdan.lrc
2010-07-29 00:27:58 83968 ----a-w- C:\Windows\System32\igfxrcht.lrc
2010-07-29 00:27:56 86528 ----a-w- C:\Windows\System32\igfxrara.lrc
2010-07-29 00:27:56 83968 ----a-w- C:\Windows\System32\igfxrchs.lrc
2010-07-29 00:27:54 122368 ----a-w- C:\Windows\System32\igfxcpl.cpl
2010-07-29 00:27:34 380416 ----a-w- C:\Windows\System32\igfxTMM.dll
2010-07-29 00:27:26 27648 ----a-w- C:\Windows\System32\igfxexps.dll
2010-07-29 00:27:26 243200 ----a-w- C:\Windows\System32\igfxpph.dll
2010-07-29 00:27:02 61952 ----a-w- C:\Windows\System32\igfxsrvc.dll
2010-07-29 00:26:30 108032 ----a-w- C:\Windows\System32\hccutils.dll
2010-07-29 00:26:20 4096 ----a-w- C:\Windows\System32\IGFXDEVLib.dll
2010-07-29 00:26:20 271360 ----a-w- C:\Windows\System32\igfxdev.dll
2010-07-29 00:26:20 119808 ----a-w- C:\Windows\System32\gfxSrvc.dll
2010-07-29 00:25:48 87552 ----a-w- C:\Windows\System32\igfxrenu.lrc
2010-07-29 00:25:44 830464 ----a-w- C:\Windows\System32\igfxress.dll
2010-07-29 00:25:44 142336 ----a-w- C:\Windows\System32\igfxdo.dll
2010-07-29 00:22:00 23552 ----a-w- C:\Windows\SysWow64\igfxexps32.dll
2010-07-29 00:20:54 228864 ----a-w- C:\Windows\SysWow64\igfxdv32.dll

============= FINISH: 18:21:44.64 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:04:27 AM

Posted 01 November 2010 - 08:55 PM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. You can subscribe by clicking the Options box to the right of your topic title and selecting Track This Topic.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks :thumbup2:
Posted Image
m0le is a proud member of UNITE

#3 puyow18

puyow18
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:11:27 PM

Posted 01 November 2010 - 10:28 PM

Hi m0le, thank you for the help. I understand that everyone is busy here and appreciate everything.

Unfortunately, this was an issue I couldn't be patient with and had to give in to temptation and went on my own to fix the problem. Not sure if what I did was right or if it completely eradicated my problem, but internet speed is back to normal.

I reset my win7 firewall settings. Didn't do anything for speed on firefox, but saw minor gains with ie8. So then I did something with nethost (or netsock?) something-or-other via cmd (found this out via google. can't remember where exactly as I found about 5 days ago). I know I probably shouldn't of done this, but I made sure to backup everything and create restore points before any action. Well I restarted pc, uninstalled firefox and installed opera 10.6. And now everything works again how it use to. So far, so good . . .

Again, sorry for not following forum protocol, but thank you for your time. Please feel free to close this thread (if deemed necessary) to help someone else in need of your expertise.

Thank you,

puyow18

Edited by puyow18, 01 November 2010 - 10:32 PM.


#4 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:04:27 AM

Posted 02 November 2010 - 11:47 AM

Thanks for letting me know :thumbup2:

Sounds to me like the problem wasn't malware-related so what you did seems to have been right. netsock repairs the internet connection so a damaged connection would have been righted and the speed would have returned. Your logs posted show no sign of malware so you're okay.

-----------------------------------------------

This topic has been closed.

If you're the topic starter, and need this topic reopened, please contact me via pm with the address of the thread.

Everyone else please begin a New Topic.
Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users