Hello! My computer won't download anything. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:09-06-2016
My computer won't download anything
Started by
Diane Abinales
, Jun 09 2016 06:21 AM
#1
Posted 09 June 2016 - 06:21 AM
Ran by user (administrator) on USER-PC (09-06-2016 20:16:27)
Running from C:\Users\user\Downloads
Loaded Profiles: user & UpdatusUser (Available Profiles: user & UpdatusUser)
Platform: Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86) Language: English (United States)
Internet Explorer Version 7 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(EgisTec Inc.) C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe
(EgisTec Inc.) C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(McAfee, Inc.) C:\Program Files\McAfee.com\Agent\mcagent.exe
(CyberLink Corp.) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(CyberLink) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
(Acer Corp.) C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Agere Systems) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
() C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\Mcshield.exe
(McAfee, Inc.) C:\Program Files\McAfee\MPF\MpfSrv.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSK\msksrver.exe
(EgisTec Inc.) C:\Program Files\EgisTec\MyWinLocker 3\x86\MWLService.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\mcmscsvc.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Yahoo! Inc.) C:\Program Files\Yahoo!\Messenger\Ymsgr_tray.exe
(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\mcsysmon.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ieuser.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [6724128 2009-02-11] (Realtek Semiconductor)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2009-04-08] (Google)
HKLM\...\Run: [EgisTecLiveUpdate] => C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe [199464 2008-10-27] (EgisTec Inc.)
HKLM\...\Run: [mwlDaemon] => C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [346672 2008-10-27] (EgisTec Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [mcagent_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [641208 2008-09-23] (McAfee, Inc.)
HKLM\...\Run: [Setresolution] => C:\ACER\config\1600X900.cmd
HKLM\...\Run: [MontiorGeo] => c:\Acer\MonitorGeo.cmd
HKLM\...\Run: [ArcadeDeluxeAgent] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [156968 2009-03-26] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [202024 2009-03-26] (CyberLink)
HKLM\...\Run: [PlayMovie] => C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe [173288 2009-03-05] (Acer Corp.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-12] (Apple Inc.)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-02-11] (Realtek Semiconductor Corp.)
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\...\Run: [Messenger (Yahoo!)] => C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [6595928 2012-05-25] (Yahoo! Inc.)
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\...\Run: [Google Update] => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-12-11] (Google Inc.)
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [3035968 2012-02-02] (DT Soft Ltd)
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\...\MountPoints2: {1958e13f-0fbf-11e6-b428-0025113ef55e} - H:\noautorun.exe
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\ACER(W~1.SCR [187392 2006-10-19] ()
HKU\S-1-5-21-1400944462-2459361521-3198188782-1001\...\RunOnce: [RUN] => C:\Windows\Acer_Normal\run_DT.exe [31528 2007-04-19] ()
AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL => C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [119296 2009-04-08] (Google)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files\EgisTec\MyWinLocker 3\x86\psdprotect.dll [2008-10-27] (EgisTec Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.16.1
Tcpip\..\Interfaces\{17D53181-9E4E-4BD1-BCD2-EC7839606C42}: [DhcpNameServer] 192.168.16.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=3409&s=1&o=vb32&d=1215&m=aspire_x1800
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=3409&s=1&o=vb32&d=1215&m=aspire_x1800
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&rlz=1I7ACAW_en&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=3409&s=1&o=vb32&d=1215&m=aspire_x1800
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=3409&s=1&o=vb32&d=1215&m=aspire_x1800
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com
HKU\S-1-5-21-1400944462-2459361521-3198188782-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com
SearchScopes: HKLM -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> C:\Program Files\McAfee\MSK\MskAPBho.dll [2008-09-22] ()
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\McAfee\VirusScan\scriptsn.dll [2008-09-26] (McAfee, Inc.)
BHO: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\partner.dll [2015-12-03] (Google Inc.)
BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2008-11-18] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-06-09] (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2016-06-09] (Google Inc.)
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2008-09-04] ()
BHO: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2016-06-09] (Google Inc.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2008-09-04] ()
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-06-09] (Google Inc.)
Toolbar: HKU\S-1-5-21-1400944462-2459361521-3198188782-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-06-09] (Google Inc.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2008-09-04] ()
FireFox:
========
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\1s6vprxf.default
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-09-04] ()
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files\Yahoo!\Shared\npYState.dll [2012-05-25] (Yahoo! Inc.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2008-12-04] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1400944462-2459361521-3198188782-1000: @tools.google.com/Google Update;version=3 -> C:\Users\user\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-25] (Google Inc.)
FF Plugin HKU\S-1-5-21-1400944462-2459361521-3198188782-1000: @tools.google.com/Google Update;version=9 -> C:\Users\user\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-25] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor [2016-06-09] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-12-21] [not signed]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Users\user\AppData\Local\Google\Chrome\Application\49.0.2623.112\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Users\user\AppData\Local\Google\Chrome\Application\49.0.2623.112\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\user\AppData\Local\Google\Chrome\Application\49.0.2623.112\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Chrome Web Store Payments) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-25]
StartMenuInternet: Google Chrome.TTUCGWCTFQMIA3WGY3YARJ5Q7E - C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2008-08-25] (Agere Systems)
R2 CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [75048 2009-03-18] ()
S3 GoogleDesktopManager-092308-165331; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2009-04-08] (Google)
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [198432 2008-09-18] ()
R2 mcmscsvc; C:\Program Files\McAfee\MSC\mcmscsvc.exe [792184 2008-09-23] (McAfee, Inc.)
R2 McNASvc; c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe [2482848 2008-09-12] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [363024 2008-09-26] (McAfee, Inc.)
R2 McProxy; c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe [359248 2008-09-10] (McAfee, Inc.)
R2 McShield; C:\Program Files\McAfee\VirusScan\Mcshield.exe [144704 2008-09-26] (McAfee, Inc.)
R3 McSysmon; C:\Program Files\McAfee\VirusScan\mcsysmon.exe [606736 2008-09-26] (McAfee, Inc.)
R2 MpfService; C:\Program Files\McAfee\MPF\MPFSrv.exe [884360 2008-09-12] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\McAfee\MSK\MskSrver.exe [25416 2008-09-22] (McAfee, Inc.)
R2 MWLService; C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe [306736 2008-10-27] (EgisTec Inc.)
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632 2008-09-23] (NewTech Infosystems, Inc.)
S3 Partner Service; C:\ProgramData\Partner\partner.exe [110576 2015-12-03] (Google Inc.)
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [244904 2008-11-25] () [File not signed]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-20] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2016-05-01] (DT Soft Ltd)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [79272 2008-09-26] (McAfee, Inc.)
R3 mfebopk; C:\Windows\System32\drivers\mfebopk.sys [35240 2008-09-26] (McAfee, Inc.)
R1 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [212968 2008-09-26] (McAfee, Inc.)
S3 mferkdk; C:\Windows\System32\drivers\mferkdk.sys [34216 2008-09-26] (McAfee, Inc.)
R3 mfesmfk; C:\Windows\System32\drivers\mfesmfk.sys [40488 2008-09-26] (McAfee, Inc.)
R1 MPFP; C:\Windows\System32\Drivers\Mpfp.sys [130424 2008-08-26] (McAfee, Inc.)
R2 mwlPSDFilter; C:\Windows\System32\DRIVERS\mwlPSDFilter.sys [19504 2008-10-09] (Egis Incorporated.)
R2 mwlPSDNServ; C:\Windows\System32\DRIVERS\mwlPSDNServ.sys [16432 2008-10-09] (Egis Incorporated.)
R2 mwlPSDVDisk; C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys [59952 2008-10-09] (Egis Incorporated.)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2014-07-28] (Apple, Inc.) [File not signed]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-09 20:16 - 2016-06-09 20:16 - 00019037 _____ C:\Users\user\Downloads\FRST.txt
2016-06-09 20:16 - 2016-06-09 20:16 - 00000000 ____D C:\FRST
2016-06-09 20:14 - 2016-06-09 20:14 - 01735680 _____ (Farbar) C:\Users\user\Downloads\FRST.exe
2016-06-09 08:49 - 2012-06-02 15:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-06-09 08:49 - 2012-06-02 15:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-06-09 08:49 - 2012-06-02 15:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-06-09 08:49 - 2012-06-02 15:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-06-09 08:48 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-06-09 08:48 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-06-08 20:55 - 2016-06-08 20:56 - 00000000 ____D C:\Windows\system32\vi-VN
2016-06-08 20:55 - 2016-06-08 20:56 - 00000000 ____D C:\Windows\system32\eu-ES
2016-06-08 20:55 - 2016-06-08 20:56 - 00000000 ____D C:\Windows\system32\ca-ES
2016-06-08 20:41 - 2016-06-08 20:41 - 00000000 ____D C:\Windows\system32\EventProviders
2016-06-08 19:57 - 2016-06-08 20:09 - 00000000 ____D C:\Windows\system32\MRT
2016-06-08 19:54 - 2016-06-08 19:54 - 03514992 _____ (FX Software) C:\Users\user\Downloads\Neighbour_From_Hell_1_Game.exe
2016-06-08 19:53 - 2016-06-08 19:53 - 03514992 _____ (FX Software) C:\Users\user\Downloads\Neighbours_From_Hell_2_Game.exe
2016-06-08 18:35 - 2016-06-08 18:35 - 00000000 ____D C:\Users\user\Documents\JoWooD
2016-06-08 18:14 - 2016-06-08 18:14 - 00078092 _____ C:\Users\user\Desktop\Schedule.pdf
2016-06-08 18:12 - 2016-06-08 18:12 - 00003466 _____ C:\Users\user\Downloads\Schedule.csmo
2016-06-07 20:39 - 2016-06-07 20:39 - 00000000 ____D C:\Program Files\JoWooD
2016-05-31 13:12 - 2016-05-31 13:12 - 00001668 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-05-31 13:12 - 2016-05-31 13:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-05-31 13:11 - 2016-05-31 13:12 - 00000000 ____D C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
2016-05-31 13:11 - 2016-05-31 13:12 - 00000000 ____D C:\Program Files\iTunes
2016-05-31 13:11 - 2016-05-31 13:11 - 00000000 ____D C:\Program Files\iPod
2016-05-31 13:04 - 2016-05-31 13:04 - 00000000 ____D C:\Program Files\Apple Software Update
2016-05-29 17:14 - 2016-05-29 17:38 - 01959424 _____ (BitTorrent Inc.) C:\Users\user\Downloads\uTorrent-3-4-6-build-42178.exe
2016-05-26 17:38 - 2016-05-26 17:38 - 178150212 _____ C:\Windows\MEMORY.DMP
2016-05-26 17:38 - 2016-05-26 17:38 - 00131072 _____ C:\Windows\Minidump\Mini052616-01.dmp
2016-05-26 17:38 - 2016-05-26 17:38 - 00000000 ____D C:\Windows\Minidump
2016-05-23 22:53 - 2016-05-23 22:53 - 00000000 ____D C:\ProgramData\Arcade Lab
2016-05-19 22:21 - 2016-05-19 22:21 - 00000000 ____D C:\Users\user\AppData\Roaming\Meridian93
2016-05-19 22:21 - 2016-05-19 22:21 - 00000000 ____D C:\ProgramData\Meridian93
2016-05-18 21:19 - 2016-05-18 21:19 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-09 20:08 - 2006-11-02 05:45 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-09 20:08 - 2006-11-02 05:45 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-09 19:56 - 2009-04-08 08:46 - 00000000 ____D C:\Program Files\Google
2016-06-09 19:55 - 2015-12-03 18:08 - 00000000 ____D C:\ProgramData\Google
2016-06-09 19:53 - 2015-12-11 21:52 - 00000904 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1400944462-2459361521-3198188782-1000UA.job
2016-06-09 19:03 - 2015-12-11 21:52 - 00000852 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1400944462-2459361521-3198188782-1000Core.job
2016-06-09 17:37 - 2015-12-03 18:54 - 00002627 _____ C:\Users\user\Desktop\Microsoft Office Word 2007.lnk
2016-06-09 09:03 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\rescache
2016-06-09 08:50 - 2006-11-02 05:47 - 00001661 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-06-09 08:44 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\inf
2016-06-09 08:44 - 2006-11-02 03:33 - 00703388 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-09 08:38 - 2009-04-08 09:00 - 00010971 _____ C:\Windows\system32\Config.MPF
2016-06-09 08:37 - 2006-11-02 05:58 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-08 23:47 - 2006-11-02 05:58 - 00032628 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-06-08 21:02 - 2015-12-03 18:48 - 00002049 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-08 21:02 - 2015-12-03 18:48 - 00002041 _____ C:\Users\user\Desktop\Google Chrome.lnk
2016-06-08 21:00 - 2015-12-03 18:10 - 00000953 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-06-08 21:00 - 2015-12-03 18:10 - 00000919 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2016-06-08 20:59 - 2015-12-03 18:08 - 00000000 ____D C:\ProgramData\NVIDIA
2016-06-08 20:58 - 2006-11-02 05:44 - 00390464 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-08 20:56 - 2006-11-02 05:35 - 00000000 ____D C:\Windows\system32\XPSViewer
2016-06-08 20:56 - 2006-11-02 05:35 - 00000000 ____D C:\Program Files\Windows Sidebar
2016-06-08 20:56 - 2006-11-02 05:35 - 00000000 ____D C:\Program Files\Windows Photo Gallery
2016-06-08 20:56 - 2006-11-02 05:35 - 00000000 ____D C:\Program Files\Windows Defender
2016-06-08 20:56 - 2006-11-02 05:35 - 00000000 ____D C:\Program Files\Windows Collaboration
2016-06-08 20:56 - 2006-11-02 05:35 - 00000000 ____D C:\Program Files\Windows Calendar
2016-06-08 20:56 - 2006-11-02 05:35 - 00000000 ____D C:\Program Files\Movie Maker
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\system32\SLUI
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\system32\setup
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\system32\oobe
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\system32\manifeststore
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\system32\lv-LV
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\system32\et-EE
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\servicing
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\IME
2016-06-08 20:56 - 2006-11-02 04:18 - 00000000 ____D C:\Program Files\Common Files\System
2016-06-08 20:55 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\system32\migwiz
2016-06-08 20:55 - 2006-11-02 04:18 - 00000000 ____D C:\Windows\system32\lt-LT
2016-06-08 20:54 - 2009-04-08 08:27 - 00000000 ____D C:\Windows\system32\RTCOM
2016-06-08 19:57 - 2006-11-02 03:24 - 136686448 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2016-06-08 19:47 - 2009-04-08 08:54 - 00000000 ____D C:\Program Files\McAfee
2016-06-08 19:41 - 2016-02-08 10:42 - 00006944 _____ C:\Users\user\AppData\Local\d3d9caps.dat
2016-06-08 18:34 - 2016-03-06 14:28 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2016-06-06 12:19 - 2015-12-03 18:10 - 00000000 ____D C:\ProgramData\Temp
2016-05-31 13:11 - 2016-04-03 22:01 - 00000000 ____D C:\ProgramData\Apple Computer
2016-05-31 13:11 - 2016-04-03 22:01 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2016-05-31 13:11 - 2016-04-03 21:59 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-05-31 13:04 - 2016-04-03 22:01 - 00001830 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-05-29 19:29 - 2015-12-04 08:49 - 00000000 ____D C:\Users\user\AppData\Local\HP
2016-05-27 20:32 - 2016-04-03 22:03 - 00000000 ____D C:\Users\user\AppData\Roaming\Apple Computer
2016-05-18 21:14 - 2016-05-01 10:12 - 00000000 ____D C:\Users\user\AppData\Roaming\DAEMON Tools Pro
2016-05-15 23:00 - 2015-12-20 21:09 - 00000000 ____D C:\Users\user\AppData\Local\Microsoft Games
==================== Files in the root of some directories =======
2016-02-08 10:42 - 2016-06-08 19:41 - 0006944 _____ () C:\Users\user\AppData\Local\d3d9caps.dat
2016-01-03 20:27 - 2016-01-04 21:31 - 0025600 _____ () C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-04 08:49 - 2015-12-04 08:49 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-12-03 18:14 - 2015-12-03 18:17 - 0007353 _____ () C:\ProgramData\ArcadeDeluxe2.log
Some files in TEMP:
====================
C:\Users\user\AppData\Local\Temp\GUR5697.exe
C:\Users\user\AppData\Local\Temp\GUR58C9.exe
C:\Users\user\AppData\Local\Temp\GUR5ADB.exe
C:\Users\user\AppData\Local\Temp\GUR5CBF.exe
C:\Users\user\AppData\Local\Temp\GUR5D2C.exe
C:\Users\user\AppData\Local\Temp\GUR6019.exe
C:\Users\user\AppData\Local\Temp\GUR6E7A.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-06-09 08:43
==================== End of FRST.txt ============================
#2
Posted 09 June 2016 - 09:10 PM
What happens when you try to download? Are you using Chrome? Have you tried IE?
Do you have the Addition.txt log too?
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users