TechSpot

Packet loss on only one computer

Solved
By Gordon9999
Aug 14, 2011
Topic Status:
Not open for further replies.
  1. I have spent hours now trying to figure out why I am getting packet loss on only one of my computers. I tried calling my ISP thinking it was them but through more investigation i see that my other computers are not having any packet loss, which means something is wrong with the individual computer. The other computers run on wireless but the computer with the packet loss is using network cable strait to the modem. My ISP is doing an investigation into the problem but I am positive its the computer or the network cable I am using. I have done every type of reliable clean up a computer can endure including the 6 steps but to no avail. I hope someone here can help me and I look forward to a reply.

    I can't get the rootkit/malware to save or copy the log. I tried and tried and it just shows as a blank log file.

    Regards,


    Malwarebytes' Anti-Malware 1.51.1.1800
    www.malwarebytes.org

    Database version: 7459

    Windows 6.1.7601 Service Pack 1
    Internet Explorer 9.0.8112.16421

    8/14/2011 5:21:02 AM
    mbam-log-2011-08-14 (05-21-02).txt

    Scan type: Full scan (C:\|)
    Objects scanned: 292680
    Time elapsed: 32 minute(s), 3 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 0

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    (No malicious items detected)

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    (No malicious items detected)

    Folders Infected:
    (No malicious items detected)

    Files Infected:
    (No malicious items detected)

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-06-23.01)
    .
    Microsoft Windows 7 Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 11/14/2009 8:40:58 PM
    System Uptime: 8/13/2011 9:12:17 PM (7 hours ago)
    .
    Motherboard: Gigabyte Technology Co., Ltd. | | EP45-DS4P
    Processor: Intel(R) Core(TM)2 Duo CPU E7400 @ 2.80GHz | Socket 775 | 2266/266mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 298 GiB total, 181.464 GiB free.
    D: is CDROM (CDFS)
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    No restore point in system.
    .
    ==== Installed Programs ======================
    .
    Acrobat.com
    Adobe AIR
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Battlefield: Bad Company 2
    Browser Configuration Utility
    Call of Duty Black Ops - Remote Console
    Call of Duty(R) - World at War(TM) 1.1 Patch
    Call of Duty(R) - World at War(TM) 1.2 Patch
    Call of Duty(R) - World at War(TM) 1.3 Patch
    Call of Duty(R) - World at War(TM) 1.4 Patch
    Call of Duty(R) - World at War(TM) 1.5 Patch
    Call of Duty(R) - World at War(TM) 1.6 Patch
    Call of Duty: Black Ops
    Call of Duty: Black Ops - Multiplayer
    Catalyst Control Center
    Catalyst Control Center - Branding
    Catalyst Control Center Graphics Previews Common
    Catalyst Control Center InstallProxy
    CCC Help English
    Company of Heroes: Tales of Valor
    Energy Saver Advance B8.0711.1
    erLT
    Google Chrome
    Heroes of Might and Magic V
    Heroes of Might and Magic V: Hammers of Fate
    Heroes of Might and Magic V: Tribes of the East
    Java Auto Updater
    Java(TM) 6 Update 24
    LIMBO
    Logitech SetPoint
    Malwarebytes' Anti-Malware version 1.51.1.1800
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
    Napoleon: Total War
    PunkBuster Services
    QuickTime
    Razer Tarantula
    Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista
    Realtek High Definition Audio Driver
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Steam
    Supreme Commander 2
    The Settlers 7: Paths to a Kingdom
    Total War: SHOGUN 2
    TSP_CODEC
    Ubisoft Game Launcher
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    VC80CRTRedist - 8.0.50727.4053
    Ventrilo Client
    VistaVoiceFix(R) 10.0
    Xfire (remove only)
    Yahoo! Messenger
    .
    ==== Event Viewer Messages From Past Week ========
    .
    8/14/2011 2:55:43 AM, Error: volsnap [35] - The shadow copies of volume C: were aborted because the shadow copy storage failed to grow.
    .
    ==== End Of File ===========================
     
  2. Gordon9999

    Gordon9999 TS Rookie Topic Starter Posts: 72

    .
    DDS (Ver_2011-06-23.01) - NTFSAMD64
    Internet Explorer: 9.0.8112.16421
    Run by Gordon at 4:40:43 on 2011-08-14
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4094.2599 [GMT -4:00]
    .
    AV: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
    SP: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\system32\atiesrxx.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\atieclxx.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\system32\taskhost.exe
    C:\Windows\SysWOW64\PnkBstrA.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\RAVCpl64.exe
    C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files (x86)\Razer\Tarantula\razerhid.exe
    C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
    C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files (x86)\Razer\Tarantula\razertra.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Users\Gordon\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Gordon\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\SysWOW64\rundll32.exe
    C:\Users\Gordon\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\SysWOW64\cscript.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.ca/
    uURLSearchHooks: DeviceVM Url Search Hook: {0063bf63-bfff-4b8f-9d26-4267df7f17dd} - C:\Windows\SysWOW64\dvmurl.dll
    mWinlogon: Userinit=userinit.exe,
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
    uRun: [Google Update] "C:\Users\Gordon\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    mRun: [Tarantula] "C:\Program Files (x86)\Razer\Tarantula\razerhid.exe"
    mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    mRunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    Trusted Zone: clonewarsadventures.com
    Trusted Zone: freerealms.com
    Trusted Zone: soe.com
    Trusted Zone: sony.com
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
    TCP: DhcpNameServer = 192.168.0.1
    TCP: Interfaces\{0EF5CA40-B99D-4E65-8906-CF0028065F5C} : DhcpNameServer = 192.168.0.1
    TCP: Interfaces\{81FCA79C-9915-4CA0-8966-A686427D4448} : DhcpNameServer = 24.153.23.114
    BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
    mRun-x64: [Tarantula] "C:\Program Files (x86)\Razer\Tarantula\razerhid.exe"
    mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    mRunOnce-x64: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    .
    ============= SERVICES / DRIVERS ===============
    .
    R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
    R2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-9-11 735960]
    R2 epfwwfpr;epfwwfpr;C:\Windows\system32\DRIVERS\epfwwfpr.sys --> C:\Windows\system32\DRIVERS\epfwwfpr.sys [?]
    R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
    R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
    R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
    R3 TarFltr;Razer Tarantula USB Keyboard;C:\Windows\system32\drivers\UsbFltr.sys --> C:\Windows\system32\drivers\UsbFltr.sys [?]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;c:\program files (x86)\steam\steamapps\common\dragon age origins\bin_ship\DAUpdaterSvc.Service.exe --> c:\program files (x86)\steam\steamapps\common\dragon age origins\bin_ship\DAUpdaterSvc.Service.exe [?]
    S3 Revoflt;Revoflt;C:\Windows\system32\DRIVERS\revoflt.sys --> C:\Windows\system32\DRIVERS\revoflt.sys [?]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
    S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
    .
    =============== Created Last 30 ================
    .
    2011-08-14 03:56:17 -------- d-----w- C:\Users\Gordon\AppData\Local\VS Revo Group
    2011-08-14 03:56:14 31800 ----a-w- C:\Windows\System32\drivers\revoflt.sys
    2011-08-14 03:56:13 -------- d-----w- C:\Program Files\VS Revo Group
    2011-08-12 16:44:57 8578896 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{28A214D1-F94D-47E6-BBF8-CB232798762A}\mpengine.dll
    2011-08-09 17:52:03 86016 ----a-w- C:\Windows\SysWow64\odbccu32.dll
    2011-08-09 17:52:03 81920 ----a-w- C:\Windows\SysWow64\odbccr32.dll
    2011-08-09 17:52:03 319488 ----a-w- C:\Windows\SysWow64\odbcjt32.dll
    2011-08-09 17:52:03 212992 ----a-w- C:\Windows\System32\odbctrac.dll
    2011-08-09 17:52:03 163840 ----a-w- C:\Windows\System32\odbccp32.dll
    2011-08-09 17:52:03 126976 ----a-w- C:\Program Files\Common Files\System\Ole DB\msdaosp.dll
    2011-08-09 17:52:03 122880 ----a-w- C:\Windows\SysWow64\odbccp32.dll
    2011-08-09 17:52:03 106496 ----a-w- C:\Windows\System32\odbccu32.dll
    2011-08-09 17:52:03 106496 ----a-w- C:\Windows\System32\odbccr32.dll
    2011-08-09 17:52:02 94208 ----a-w- C:\Program Files (x86)\Common Files\System\Ole DB\msdaosp.dll
    2011-08-09 17:52:02 163840 ----a-w- C:\Windows\SysWow64\odbctrac.dll
    2011-08-03 05:42:19 -------- d-----w- C:\Program Files (x86)\AMD APP
    2011-08-01 23:26:04 -------- d-----w- C:\Users\Gordon\AppData\Local\Ubisoft Game Launcher
    .
    ==================== Find3M ====================
    .
    2011-08-07 23:11:18 280736 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
    2011-08-07 23:11:18 280736 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
    2011-08-07 23:09:59 215128 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
    2011-07-22 05:42:23 2303488 ----a-w- C:\Windows\System32\jscript9.dll
    2011-07-22 05:36:16 1389056 ----a-w- C:\Windows\System32\wininet.dll
    2011-07-22 05:32:40 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
    2011-07-22 02:54:43 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2011-07-22 02:48:26 1126912 ----a-w- C:\Windows\SysWow64\wininet.dll
    2011-07-22 02:44:36 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2011-07-16 05:41:50 362496 ----a-w- C:\Windows\System32\wow64win.dll
    2011-07-16 05:41:49 243200 ----a-w- C:\Windows\System32\wow64.dll
    2011-07-16 05:41:49 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
    2011-07-16 05:39:10 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
    2011-07-16 05:37:12 421888 ----a-w- C:\Windows\System32\KernelBase.dll
    2011-07-16 04:29:19 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
    2011-07-16 04:26:00 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
    2011-07-16 04:25:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
    2011-07-16 04:24:23 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
    2011-07-16 04:24:22 272384 ----a-w- C:\Windows\SysWow64\KernelBase.dll
    2011-07-16 02:21:44 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
    2011-07-16 02:21:41 2048 ----a-w- C:\Windows\SysWow64\user.exe
    2011-07-16 02:17:19 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
    2011-07-16 02:17:19 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
    2011-07-16 02:17:19 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
    2011-07-16 02:17:19 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
    2011-07-09 02:46:28 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
    2011-07-08 04:15:50 9884672 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
    2011-07-08 03:54:26 23385600 ----a-w- C:\Windows\System32\atio6axx.dll
    2011-07-08 03:37:30 60416 ----a-w- C:\Windows\System32\OVDecode64.dll
    2011-07-08 03:36:58 16907776 ----a-w- C:\Windows\System32\amdocl64.dll
    2011-07-08 03:33:28 17940992 ----a-w- C:\Windows\SysWow64\atioglxx.dll
    2011-07-08 03:29:54 151552 ----a-w- C:\Windows\System32\atiapfxx.exe
    2011-07-08 03:29:44 689152 ----a-w- C:\Windows\SysWow64\aticfx32.dll
    2011-07-08 03:28:26 814592 ----a-w- C:\Windows\System32\aticfx64.dll
    2011-07-08 03:25:48 462848 ----a-w- C:\Windows\System32\ATIDEMGX.dll
    2011-07-08 03:25:38 485376 ----a-w- C:\Windows\System32\atieclxx.exe
    2011-07-08 03:25:02 204288 ----a-w- C:\Windows\System32\atiesrxx.exe
    2011-07-08 03:23:48 120320 ----a-w- C:\Windows\System32\atitmm64.dll
    2011-07-08 03:23:32 423424 ----a-w- C:\Windows\System32\atipdl64.dll
    2011-07-08 03:23:26 356352 ----a-w- C:\Windows\SysWow64\atipdlxx.dll
    2011-07-08 03:23:14 278528 ----a-w- C:\Windows\SysWow64\Oemdspif.dll
    2011-07-08 03:23:08 16384 ----a-w- C:\Windows\System32\atimuixx.dll
    2011-07-08 03:23:04 59392 ----a-w- C:\Windows\System32\atiedu64.dll
    2011-07-08 03:22:58 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
    2011-07-08 03:19:50 4275712 ----a-w- C:\Windows\SysWow64\atidxx32.dll
    2011-07-08 03:10:38 5072896 ----a-w- C:\Windows\System32\atidxx64.dll
    2011-07-08 03:06:10 1113088 ----a-w- C:\Windows\System32\atiumd6v.dll
    2011-07-08 03:05:46 1828864 ----a-w- C:\Windows\SysWow64\atiumdmv.dll
    2011-07-08 03:05:34 3848704 ----a-w- C:\Windows\System32\atiumd6a.dll
    2011-07-08 03:02:08 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
    2011-07-08 03:02:06 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
    2011-07-08 03:01:58 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
    2011-07-08 03:01:58 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
    2011-07-08 03:01:46 8134656 ----a-w- C:\Windows\System32\aticaldd64.dll
    2011-07-08 03:00:34 4367360 ----a-w- C:\Windows\SysWow64\atiumdag.dll
    2011-07-08 02:58:52 6740480 ----a-w- C:\Windows\SysWow64\aticaldd.dll
    2011-07-08 02:55:56 4039680 ----a-w- C:\Windows\SysWow64\atiumdva.dll
    2011-07-08 02:54:30 58880 ----a-w- C:\Windows\System32\coinst.dll
    2011-07-08 02:54:22 5540864 ----a-w- C:\Windows\System32\atiumd64.dll
    2011-07-08 02:47:42 375808 ----a-w- C:\Windows\System32\atiadlxx.dll
    2011-07-08 02:47:34 266240 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
    2011-07-08 02:47:24 15360 ----a-w- C:\Windows\System32\atig6pxx.dll
    2011-07-08 02:47:20 13312 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
    2011-07-08 02:47:20 13312 ----a-w- C:\Windows\System32\atiglpxx.dll
    2011-07-08 02:47:18 39936 ----a-w- C:\Windows\System32\atig6txx.dll
    2011-07-08 02:47:10 32768 ----a-w- C:\Windows\SysWow64\atigktxx.dll
    2011-07-08 02:47:04 307712 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
    2011-07-08 02:46:20 40960 ----a-w- C:\Windows\System32\atiuxp64.dll
    2011-07-08 02:46:14 31744 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
    2011-07-08 02:46:06 38912 ----a-w- C:\Windows\System32\atiu9p64.dll
    2011-07-08 02:45:58 29184 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
    2011-07-08 02:45:10 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
    2011-07-08 02:41:02 53760 ----a-w- C:\Windows\System32\atimpc64.dll
    2011-07-08 02:41:02 53760 ----a-w- C:\Windows\System32\amdpcom64.dll
    2011-07-08 02:40:48 52736 ----a-w- C:\Windows\SysWow64\atimpc32.dll
    2011-07-08 02:40:48 52736 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
    2011-07-06 23:52:42 41272 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
    2011-07-06 23:52:42 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2011-07-06 21:49:57 0 ----a-w- C:\Windows\ativpsrm.bin
    2011-06-27 20:23:20 53760 ----a-w- C:\Windows\SysWow64\OVDecode.dll
    2011-06-27 20:22:40 13904896 ----a-w- C:\Windows\SysWow64\amdocl.dll
    2011-06-24 05:34:53 214528 ----a-w- C:\Windows\System32\winsrv.dll
    2011-06-24 05:25:49 338432 ----a-w- C:\Windows\System32\conhost.exe
    2011-06-23 05:43:12 5561216 ----a-w- C:\Windows\System32\ntoskrnl.exe
    2011-06-23 04:33:57 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
    2011-06-23 04:33:57 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
    2011-06-21 06:34:00 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys
    2011-06-18 15:30:08 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-06-16 07:34:06 2971648 ----a-w- C:\Windows\System32\SlotMaximizerBe.dll
    2011-06-16 07:34:06 105984 ----a-w- C:\Windows\System32\SlotMaximizerAg.dll
    2011-06-11 03:07:25 3137536 ----a-w- C:\Windows\System32\win32k.sys
    2011-05-25 03:44:14 53760 ----a-w- C:\Windows\System32\OpenCL.dll
    2011-05-25 03:44:10 51712 ----a-w- C:\Windows\SysWow64\OpenCL.dll
    2011-05-24 23:14:10 270720 ------w- C:\Windows\System32\MpSigStub.exe
    2011-05-24 11:42:55 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
    2011-05-24 10:40:05 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
    2011-05-24 10:40:05 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
    2011-05-24 10:39:38 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
    2011-05-24 10:37:54 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
    .
    ============= FINISH: 4:41:08.19 ===============
     
  3. Gordon9999

    Gordon9999 TS Rookie Topic Starter Posts: 72

    I blew on the network cable and gave it a good rub, also to no avail.
     
  4. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    Welcome to TechSpot! The nature of this forum is to try and find malware and remove it. To that end, I can check the logs generated by scans you run. However, since your ISP is also working on this problem, it is very likely that if we do find malware, it may not be the cause of the problem.

    I'd like to share some basic Wiki information regarding Packet Loss:
    http://en.wikipedia.org/wiki/Packet_loss

    Since you are a heavy gamer, this will be more noticeable to you. I will help find and fix malware-or rule it out. Following that, if the problem continues, it will be between you and the ISP or help in a forum more suitable that this one.
    ========================================
    Question: Are you referring to the GMER scan here?
    If so, don't be concerned. IF there is a rootkit, we should see some indication in Combofix:
    =======================================
    Please note: If you have previously run Combofix and it's still on the system, please uninstall it. Then download the current version and do the scan: Uninstall directions, if needed
    • Click START> then RUN
    • Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
    --------------------------------------
    Download Combofix from HERE or HERE and save to the desktop
    • Double click combofix.exe & follow the prompts.
    • ComboFix will check to see if the Microsoft Windows Recovery Console is installed. It is recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode if needed.
      **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.
    • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
    • Once installed, you should see a blue screen prompt that says:
      The Recovery Console was successfully installed.
    • .Click on Yes, to continue scanning for malware
    • .If Combofix asks you to update the program, allow
    • .Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
    • .Close any open browsers.
    • .Double click combofix.exe[​IMG] & follow the prompts to run.
    • When the scan completes , a report will be generated-it will open a text window. Please paste the C:\ComboFix.txt in next reply..
    Re-enable your Antivirus software.

    Note 1:Do not mouse-click Combofix's window while it is running. That may cause it to stall.
    Note 2: ComboFix may reset a number of Internet Explorer's settings, including making I-E the default browser.
    Note 3: Combofix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you -- please tell your helper.
    Note 4: CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
    Note 5: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion", restart computer to fix the issue.
    ========================================
    Please disable your system Eset Nod32 and run this online scan:
    • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
      ESETOnlineScan
    • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      [o] Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
      [o] Double click on the [​IMG]on your desktop.
    • Check 'Yes I accept terms of use.'
    • Click Start button
    • Accept any security warnings from your browser.
      [​IMG]
    • Uncheck 'Remove found threats'
    • Check 'Scan archives/
    • Leave remaining settings as is.
    • Press the Start button.
    • ESET will then download updates for itself, install itself, and begin scanning your computer. Please wait for the scan to finish.
    • When the scan completes, press List of found threats
    • Push Export of text file and save the file to your desktop using a unique name, such as ESETScan. Paste this log in your next reply.
    • Push the Back button
    • Push Finish

    NOTE: If no malware is found then no log will be produced. Let me know if this is the case.
    =================================================
    My Guidelines: please read and follow:
    • Be patient. Malware cleaning takes time and I am also working with other members while I am helping you.
    • Read my instructions carefully. If you don't understand or have a problem, ask me.
    • If you have questions, or if a program doesn't work, stop and tell me about it. Don't try to get around it yourself.
    • Follow the order of the tasks I give you. Order is crucial in cleaning process.
    • File sharing programs should be uninstalled or disabled during the cleaning process..
    • Observe these:
      [o] Don't use any other cleaning programs or scans while I'm helping you.
      [o] Don't use a Registry cleaner or make any changes in the Registry.
      [o] Don't download and install new programs- except those I give you.
    • Please let me know if there is any change in the system.

    If I don't get a reply from you in 5 days, the thread will be closed. If your problem persist, you can send a PM to reopen it.
    =====================================
     
  5. Gordon9999

    Gordon9999 TS Rookie Topic Starter Posts: 72

    ESET was fine no problem but when I ran the combo fix first i couldnt click on anything without it saying it was marked to be deleted. So I restarted the computer like you said and now I cant find the log file that was created by running combo fix.

    This problem is entirely a virus or malware because no other computer at my house has packet loss over the internet. I am now starting to think this is a hardware problem. I will continue with this once I am told where the log file is.
     
  6. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    I'll be glad to try and remove it if it's malware, but we have to find it first. All I have for description is 'packet loss.' That doesn't give me much to go on.

    Explain please:
    Are you referring to the GMER scan?

    If there is a rootkit, it should show up in Combofix.
     
  7. Gordon9999

    Gordon9999 TS Rookie Topic Starter Posts: 72

    Yes, gmer will not save a log file when I click save.

    ComboFix 11-08-15.04 - Gordon 08/14/2011 15:04:49.1.2 - x64
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4094.2699 [GMT -4:00]
    Running from: c:\users\Gordon\Desktop\Random\ComboFix.exe
    AV: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
    SP: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    * Created a new restore point
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\users\Gordon\videos\QuickTimeInstaller.exe
    c:\windows\system32\SCLabel.ocx
    c:\windows\SysWow64\SCLabel.ocx
    c:\windows\YAHELITE.INI
    .
    .
    ((((((((((((((((((((((((( Files Created from 2011-07-14 to 2011-08-14 )))))))))))))))))))))))))))))))
    .
    .
    2011-08-14 19:09 . 2011-08-14 19:09 -------- d-----w- c:\users\Default\AppData\Local\temp
    2011-08-14 03:56 . 2011-08-14 03:56 -------- d-----w- c:\users\Gordon\AppData\Local\VS Revo Group
    2011-08-14 03:56 . 2009-12-30 15:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
    2011-08-14 03:56 . 2011-08-14 03:56 -------- d-----w- c:\program files\VS Revo Group
    2011-08-12 16:44 . 2011-07-13 04:53 8578896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{28A214D1-F94D-47E6-BBF8-CB232798762A}\mpengine.dll
    2011-08-09 17:52 . 2011-06-15 10:02 212992 ----a-w- c:\windows\system32\odbctrac.dll
    2011-08-09 17:52 . 2011-06-15 10:02 163840 ----a-w- c:\windows\system32\odbccp32.dll
    2011-08-09 17:52 . 2011-06-15 10:02 106496 ----a-w- c:\windows\system32\odbccu32.dll
    2011-08-09 17:52 . 2011-06-15 10:02 106496 ----a-w- c:\windows\system32\odbccr32.dll
    2011-08-09 17:52 . 2011-06-15 09:59 126976 ----a-w- c:\program files\Common Files\System\Ole DB\msdaosp.dll
    2011-08-09 17:52 . 2011-06-15 08:55 86016 ----a-w- c:\windows\SysWow64\odbccu32.dll
    2011-08-09 17:52 . 2011-06-15 08:55 81920 ----a-w- c:\windows\SysWow64\odbccr32.dll
    2011-08-09 17:52 . 2011-06-15 08:55 319488 ----a-w- c:\windows\SysWow64\odbcjt32.dll
    2011-08-09 17:52 . 2011-06-15 08:55 122880 ----a-w- c:\windows\SysWow64\odbccp32.dll
    2011-08-09 17:52 . 2011-06-15 08:55 163840 ----a-w- c:\windows\SysWow64\odbctrac.dll
    2011-08-09 17:52 . 2011-06-15 08:54 94208 ----a-w- c:\program files (x86)\Common Files\System\Ole DB\msdaosp.dll
    2011-08-03 05:42 . 2011-08-03 05:42 -------- d-----w- c:\programdata\ATI
    2011-08-03 05:42 . 2011-08-03 05:42 -------- d-----w- c:\program files (x86)\AMD APP
    2011-08-01 23:26 . 2011-08-01 23:26 -------- d-----w- c:\users\Gordon\AppData\Local\Ubisoft Game Launcher
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-08-07 23:11 . 2009-09-04 02:21 280736 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
    2011-08-07 23:11 . 2009-09-03 21:59 280736 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
    2011-08-07 23:09 . 2009-09-03 21:59 215128 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
    2011-07-16 04:26 . 2011-08-09 17:51 44032 ----a-w- c:\windows\apppatch\acwow64.dll
    2011-07-08 04:15 . 2011-07-08 04:15 9884672 ----a-w- c:\windows\system32\drivers\atikmdag.sys
    2011-07-08 03:54 . 2011-07-08 03:54 23385600 ----a-w- c:\windows\system32\atio6axx.dll
    2011-07-08 03:37 . 2011-07-08 03:37 60416 ----a-w- c:\windows\system32\OVDecode64.dll
    2011-07-08 03:36 . 2011-07-08 03:36 16907776 ----a-w- c:\windows\system32\amdocl64.dll
    2011-07-08 03:33 . 2011-07-08 03:33 17940992 ----a-w- c:\windows\SysWow64\atioglxx.dll
    2011-07-08 03:29 . 2011-07-08 03:29 151552 ----a-w- c:\windows\system32\atiapfxx.exe
    2011-07-08 03:29 . 2011-07-08 03:29 689152 ----a-w- c:\windows\SysWow64\aticfx32.dll
    2011-07-08 03:28 . 2011-05-25 03:06 814592 ----a-w- c:\windows\system32\aticfx64.dll
    2011-07-08 03:25 . 2011-07-08 03:25 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
    2011-07-08 03:25 . 2011-07-08 03:25 485376 ----a-w- c:\windows\system32\atieclxx.exe
    2011-07-08 03:25 . 2011-07-08 03:25 204288 ----a-w- c:\windows\system32\atiesrxx.exe
    2011-07-08 03:23 . 2011-07-08 03:23 120320 ----a-w- c:\windows\system32\atitmm64.dll
    2011-07-08 03:23 . 2011-07-08 03:23 423424 ----a-w- c:\windows\system32\atipdl64.dll
    2011-07-08 03:23 . 2011-07-08 03:23 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
    2011-07-08 03:23 . 2011-07-08 03:23 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll
    2011-07-08 03:23 . 2011-07-08 03:23 16384 ----a-w- c:\windows\system32\atimuixx.dll
    2011-07-08 03:23 . 2011-07-08 03:23 59392 ----a-w- c:\windows\system32\atiedu64.dll
    2011-07-08 03:22 . 2011-07-08 03:22 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
    2011-07-08 03:19 . 2011-07-08 03:19 4275712 ----a-w- c:\windows\SysWow64\atidxx32.dll
    2011-07-08 03:10 . 2011-05-25 02:49 5072896 ----a-w- c:\windows\system32\atidxx64.dll
    2011-07-08 03:06 . 2011-07-08 03:06 1113088 ----a-w- c:\windows\system32\atiumd6v.dll
    2011-07-08 03:05 . 2011-07-08 03:05 1828864 ----a-w- c:\windows\SysWow64\atiumdmv.dll
    2011-07-08 03:05 . 2011-07-08 03:05 3848704 ----a-w- c:\windows\system32\atiumd6a.dll
    2011-07-08 03:02 . 2011-07-08 03:02 51200 ----a-w- c:\windows\system32\aticalrt64.dll
    2011-07-08 03:02 . 2011-07-08 03:02 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
    2011-07-08 03:01 . 2011-07-08 03:01 44544 ----a-w- c:\windows\system32\aticalcl64.dll
    2011-07-08 03:01 . 2011-07-08 03:01 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
    2011-07-08 03:01 . 2011-07-08 03:01 8134656 ----a-w- c:\windows\system32\aticaldd64.dll
    2011-07-08 03:00 . 2011-07-08 03:00 4367360 ----a-w- c:\windows\SysWow64\atiumdag.dll
    2011-07-08 02:58 . 2011-07-08 02:58 6740480 ----a-w- c:\windows\SysWow64\aticaldd.dll
    2011-07-08 02:55 . 2011-07-08 02:55 4039680 ----a-w- c:\windows\SysWow64\atiumdva.dll
    2011-07-08 02:54 . 2011-05-25 02:19 58880 ----a-w- c:\windows\system32\coinst.dll
    2011-07-08 02:54 . 2011-07-08 02:54 5540864 ----a-w- c:\windows\system32\atiumd64.dll
    2011-07-08 02:47 . 2011-07-08 02:47 375808 ----a-w- c:\windows\system32\atiadlxx.dll
    2011-07-08 02:47 . 2011-07-08 02:47 266240 ----a-w- c:\windows\SysWow64\atiadlxy.dll
    2011-07-08 02:47 . 2011-07-08 02:47 15360 ----a-w- c:\windows\system32\atig6pxx.dll
    2011-07-08 02:47 . 2011-07-08 02:47 13312 ----a-w- c:\windows\SysWow64\atiglpxx.dll
    2011-07-08 02:47 . 2011-07-08 02:47 13312 ----a-w- c:\windows\system32\atiglpxx.dll
    2011-07-08 02:47 . 2011-07-08 02:47 39936 ----a-w- c:\windows\system32\atig6txx.dll
    2011-07-08 02:47 . 2011-07-08 02:47 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll
    2011-07-08 02:47 . 2011-07-08 02:47 307712 ----a-w- c:\windows\system32\drivers\atikmpag.sys
    2011-07-08 02:46 . 2011-05-25 02:24 40960 ----a-w- c:\windows\system32\atiuxp64.dll
    2011-07-08 02:46 . 2011-07-08 02:46 31744 ----a-w- c:\windows\SysWow64\atiuxpag.dll
    2011-07-08 02:46 . 2011-07-08 02:46 38912 ----a-w- c:\windows\system32\atiu9p64.dll
    2011-07-08 02:45 . 2011-07-08 02:45 29184 ----a-w- c:\windows\SysWow64\atiu9pag.dll
    2011-07-08 02:45 . 2011-07-08 02:45 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
    2011-07-08 02:41 . 2011-07-08 02:41 53760 ----a-w- c:\windows\system32\atimpc64.dll
    2011-07-08 02:41 . 2011-07-08 02:41 53760 ----a-w- c:\windows\system32\amdpcom64.dll
    2011-07-08 02:40 . 2011-07-08 02:40 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll
    2011-07-08 02:40 . 2011-07-08 02:40 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll
    2011-07-06 23:52 . 2010-12-10 07:43 41272 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
    2011-07-06 23:52 . 2010-12-10 07:42 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
    2011-06-27 20:23 . 2011-06-27 20:23 53760 ----a-w- c:\windows\SysWow64\OVDecode.dll
    2011-06-27 20:22 . 2011-06-27 20:22 13904896 ----a-w- c:\windows\SysWow64\amdocl.dll
    2011-06-18 15:30 . 2011-05-14 21:01 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-06-16 07:34 . 2011-06-16 07:34 2971648 ----a-w- c:\windows\system32\SlotMaximizerBe.dll
    2011-06-16 07:34 . 2011-06-16 07:34 105984 ----a-w- c:\windows\system32\SlotMaximizerAg.dll
    2011-06-11 03:07 . 2011-07-13 16:15 3137536 ----a-w- c:\windows\system32\win32k.sys
    2011-05-25 03:44 . 2011-05-25 03:44 53760 ----a-w- c:\windows\system32\OpenCL.dll
    2011-05-25 03:44 . 2011-05-25 03:44 51712 ----a-w- c:\windows\SysWow64\OpenCL.dll
    2011-05-24 23:14 . 2009-10-02 18:49 270720 ------w- c:\windows\system32\MpSigStub.exe
    2011-05-24 11:42 . 2011-06-29 13:31 404480 ----a-w- c:\windows\system32\umpnpmgr.dll
    2011-05-24 10:40 . 2011-06-29 13:31 44544 ----a-w- c:\windows\SysWow64\devrtl.dll
    2011-05-24 10:40 . 2011-06-29 13:31 64512 ----a-w- c:\windows\SysWow64\devobj.dll
    2011-05-24 10:39 . 2011-06-29 13:31 145920 ----a-w- c:\windows\SysWow64\cfgmgr32.dll
    2011-05-24 10:37 . 2011-06-29 13:31 252928 ----a-w- c:\windows\SysWow64\drvinst.exe
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "Tarantula"="c:\program files (x86)\Razer\Tarantula\razerhid.exe" [2007-05-07 159744]
    "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-07-08 336384]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2009-9-3 1207312]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;c:\program files (x86)\steam\steamapps\common\dragon age origins\bin_ship\DAUpdaterSvc.Service.exe [x]
    R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
    R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [x]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
    R4 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-07-06 366640]
    S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
    S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-09-11 735960]
    S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
    S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
    S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
    S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
    S3 TarFltr;Razer Tarantula USB Keyboard;c:\windows\system32\drivers\UsbFltr.sys [x]
    .
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2011-08-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3139528699-3978845635-2099493579-1000Core.job
    - c:\users\Gordon\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-19 16:23]
    .
    2011-08-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3139528699-3978845635-2099493579-1000UA.job
    - c:\users\Gordon\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-19 16:23]
    .
    .
    --------- x86-64 -----------
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "RtHDVCpl"="RAVCpl64.exe" [2008-06-27 6453760]
    "Skytel"="Skytel.exe" [2008-06-25 1826816]
    "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576]
    "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-09-11 2716216]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "LoadAppInit_DLLs"=0x0
    .
    ------- Supplementary Scan -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.google.ca/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    Trusted Zone: clonewarsadventures.com
    Trusted Zone: freerealms.com
    Trusted Zone: soe.com
    Trusted Zone: sony.com
    TCP: DhcpNameServer = 192.168.0.1
    .
    - - - - ORPHANS REMOVED - - - -
    .
    WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
    AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
    .
    .
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_USERS\S-1-5-21-3139528699-3978845635-2099493579-1000\Software\SecuROM\License information*]
    "datasecu"=hex:ee,19,00,93,4e,9a,a4,27,48,82,f9,e8,13,b2,0f,26,cf,08,06,0d,b9,
    36,e1,2a,fc,34,f7,66,92,ce,aa,97,72,d5,10,cd,77,ff,9a,86,b3,14,19,52,79,01,\
    "rkeysecu"=hex:b9,ea,00,2f,fd,78,85,51,c3,e1,56,fa,b6,74,97,8a
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10t_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10t_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10t.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.10"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10t.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10t.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10t.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ------------------------ Other Running Processes ------------------------
    .
    c:\windows\SysWOW64\PnkBstrA.exe
    .
    **************************************************************************
    .
    Completion time: 2011-08-14 15:15:11 - machine was rebooted
    ComboFix-quarantined-files.txt 2011-08-14 19:15
    .
    Pre-Run: 192,580,177,920 bytes free
    Post-Run: 192,778,014,720 bytes free
    .
    - - End Of File - - C02086E7AD90CBAE646B085B3825521B
     
  8. Gordon9999

    Gordon9999 TS Rookie Topic Starter Posts: 72

    I took the computer in to PC cyber to get checked out the other day. I will post the solution for the packet loss.

    FYI bobbye I would like to continue with your virus finding process because I am not paying 90 dollars for PC Cyber to check for a virus. also thank you for the help you have provided so far.

    Is my most recent log I have posted the combofix.txt?
     
  9. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    So either you used the PC Cybertech or you're going to use it? Not sure which. It any changes are made on the system, they will affect the logs- whether the do a malware heck or not! As I said, I have to find something to remove it and we don't know if malware is related to the packet loss.

    Question: Did you set these entries?
    uLocal Page = c:\windows\system32\blank.htm;uStart
    Page = hxxp://www.google.ca/
    mLocal Page = c:\windowsSysWOWW64\blankhtmm
    ===============================
    Please remove from Trusted Zone:
    Trusted Zone:clonewarsadventuress.com
    Trusted Zone:freerealmss.com
    Trusted Zone:soee.com
    Trusted Zone:sonyy.com
    ==========================
    I'd like to check a couple of more things, using SAS:
    [​IMG]
    SuperAntiSpyware Home Edition Free Version
    • Please downloadSuperAntiSpywaree from HERE
    • LaunchSuperAntiSpywaree and click on 'Check for updates'.
    • Wait for the updates to be installed
    • On the main screen click on 'Scan your computer'.
    • Check: 'Perform Complete Scan then Click 'Next' to start the scan.
    • Superantispywaree will now scan your computer,when it's finished it will list all/any infections found.
    • Make sure everything found has a checkmarkk next to it,then press 'Next'.
    • Click on 'Finish' when you've done.
    It's possible that the program will ask you to reboot in order to delete some files.

    Obtain theSuperAntiSpywaree log as follows:
    • Click on 'Preferences'.
    • Click on the 'Statistics/Logs' tab.
    • Under 'Scanner Logs' double click on SuperAntiSpywaree Scan Log'.
    It will then open in your default text editor,such as Notepad. Paste the notepad file here on your reply
     
  10. Gordon9999

    Gordon9999 TS Rookie Topic Starter Posts: 72

    I dont know about the uLocal or the mLocal but I have always had my web browser set to google. I don't know what the other two are.

    I removed sites from trusted zone. I have no idea how they made it on that list.

    When I took my computer in they checked my Ethernet card and it was fine. I told them I was going through a anti-virus process with techspot and they stated nothing would be changed and that I didn't need to make new log files for you.

    The scary thing is PC cyber says they show no packet loss on my computer when they tested it.

    This makes no sense because I got home and tested multiple computers on the same network connection and they show no packet loss, "But" when I connect this computer it shows a packet loss of +5%. I called them and I am bringing it back sometime this week.

    I ran the superantispyware 3 times in a row and these 28 cookie were the only cookies that showed, all three times.


    SUPERAntiSpyware Scan Log
    http://www.superantispyware.com

    Generated 08/20/2011 at 11:18 PM

    Application Version : 5.0.1118

    Core Rules Database Version : 7585
    Trace Rules Database Version: 5397

    Scan type : Complete Scan
    Total Scan Time : 00:27:45

    Operating System Information
    Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
    UAC On - Limited User

    Memory items scanned : 667
    Memory threats detected : 0
    Registry items scanned : 69893
    Registry threats detected : 0
    File items scanned : 58503
    File threats detected : 28

    Adware.Tracking Cookie
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .doubleclick.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .anrtx.tacoda.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .at.atwola.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .at.atwola.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.net [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ar.atwola.com [ C:\USERS\GORDON\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
     
  11. Gordon9999

    Gordon9999 TS Rookie Topic Starter Posts: 72

    I went through my task manager and seen all the process's and services running and I am usually very good at keeping it squeaky clean but I decided to run my ESET systeminspector.

    I was running in my process about 1.86 GB memory at all times and my cpu usage would fluctuate but after some very very long reading of descriptions of process's and services I have disabled and turned off all kinds of things!! I checked my process when it was all done and all my hard work brought my memory to 700 MB standing and my cpu usage does not move from 0% unless I do something extensive like launch a online multiplayer game. Even then the cpu usage only goes to 20%. I am also running from 250 to 500 fps on call of duty black ops BFBC2 now!!

    I am so happy but I want this packet loss problem resolved or I will go bonkers :)

    cheers,
     
     
  12. Gordon9999

    Gordon9999 TS Rookie Topic Starter Posts: 72

    WOW. Somehow by clearing some process's and services from running I have stopped the packet loss :confused:

    I did a pingtest/speedtest before I dipped into the task manager and showed a packet loss of 5% and now as you can see in the pingtest link below I am rocking it out properly.

    http://www.pingtest.net/result/45615880.png

    Any way to get rid of the jitter at all?

    also bobbye I still want to continue with this process until you give me a clean bill of health.

    FYI all process's and services were legitimate but not necessary to be running. The only process I was worried about turning off was the java updater. Is it ok if I just manually update it once a month? I found it to be unnecessarily and constantly running in my process. All other updates are constant e.g. windows/NOD32 updater is always running. If you want a list of the process's and services I disabled and turned off I think I could find them and list them all. Surprisingly I was able to turn off all logitech, razerhid/razertra, catalyst "which had 4 different process's" etc etc without any problem from the devices and graphics card.

    once again I am thankful for techspots existence and bobbyes existence.

    Best Regards, Gordon
     
  13. Gordon9999

    Gordon9999 TS Rookie Topic Starter Posts: 72

    Is there a bobbye in the house??? lol I will wait it out hope you can reply soon bobbye
     
  14. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    I replied to your PM yesterday:

    Disable the Java update service, then open Java in the Control Panel> Update tab> Uncheck 'check automatically for updates'> click Yes to confirm> Close.

    I do not recommend using this updater at all. Checking yourself and updating yourself will be a reminder to remove the outdated version. The only auto-update I allow is the AV.
    =============================================
    Did you check the line in SAS to remove the entries it finds?
    Reset Cookies

    For Internet Explorer: Internet Options (through Tools or Control Panel) Privacy tab> Advanced button> CHECK 'override automatic Cookie handling'> CHECK 'accept first party Cookies'> CHECK 'Block third party Cookies'> CHECK 'allow per session Cookies'> Apply> OK.

    For Firefox: Tools> Options> Privacy> Cookies> CHECK ‘accept Cookies from Sites’> UNCHECK 'accept third party Cookies'> Set Keep until 'they expire'. This will allow you to keep Cookies for registered sites and prevent or remove others. (Note: for Firefox v3.5, after Privacy click on 'use custom settings for History.')

    I suggest using the following two add-on for Firefox. They will prevent the Tracking Cookies that come from ads and banners and other sources:
    AdBlock Plus
    Easy List

    For Chrome: Tools> Options> Under The Hood> Privacy Section> CHECK 'Restrict how third party Cookies can be used'> Close.
    (First-party and third-party cookies can be set by the website you're visiting and websites that have items embedded in the website you're visiting. But when you next visit the website, only first-party cookie information is sent to the website. Third-party cookie information isn't sent back to the websites that originally set the third-party cookies.)
    =============================================
    Order to use for uninstalls:
    1. Check program for it's own uninstall file. If it has one, use that.
    2. If program does not have uninstall file, use Add/Remove Programs.
    3. If 1. It does not appear in Add/Remove Program -or if- 2. It won't uninstall from there, then use Revo or Windows Installer Clean Up Utility
    ======================
    Remove all from Trusted Zone:
    Trusted Zone: clonewarsadventures.com
    Trusted Zone: freerealms.com
    Trusted Zone: soe.com
    Trusted Zone: sony.com
    Control Panel> Internet Otions> Security tab> Trusted Sites> Sites> type in each of the following find each site in the Web Sites box> highlight> remove for eeach> OK> Apply> OK
    =========================
    The system is clean:
    Remove all of the tools we used and the files and folders they created
    • Uninstall ComboFix and all Backups of the files it deleted
      [o] Click START> then RUN
      [o] Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
    • Download OTCleanIt by OldTimer and save it to your Desktop.
      [o] Double click OTCleanIt.exe.
      [o] Click the CleanUp! button.
      [o] If you are prompted to Reboot during the cleanup, select Yes.
      [o]The tool will delete itself once it finishes.
      Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.
      Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.
    • Set a new, clean Restore Point
      [o] Click on Start> right click on Computer> Properties
      [o] Select System Protection
      [o] Click on the Create button (near bottom)
      [o] Type a name for the Restore Point
      [o] Click on Create again to save the restore point.
    • Deleting all but the most recent System Protection point in Windows 7
      [o] Click Start> Computer> right click the C Drive and choose Properties> enter.
      [o] Click Disk Cleanup from there.
      [​IMG]
      [o] Click Clean up system files
      This restarts Disk Cleanup to run in elevated mode.
      [o] Click the More Options tab
      [​IMG]
      [o] Click the Clean up under System Restore and Shadow Copies.
      [o] Click OK.
      [o] You will get a confirmation screen> Just click Delete.
      [o] Click OK on the Disk Cleanup Screen.
      [o] Click Delete Files on the Confirmation screen.
    [​IMG]
    This runs the Disk Cleanup utility along with other selections if you have chosen any. (if you had a lot System Restore points, you will see a significant change in the free space in C drive)
    Images courtesy lytebyte.

    Empty the Recycle Bin
    =================================
    If the packet loss continues to be a problem, please post in one of our more appropriate forums.

    I don't know where this post went- I had most of it done and sent it last night.
     
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.