« previous next »
Pages: [1]

Author Topic: Media Centre freezing, stuffing up  (Read 1841 times)

Offline htpconvert2

  • Newbie
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Media Centre freezing, stuffing up
« on: April 03, 2011, 12:59:24 AM »
Hi! I have been here before and helped by the wonderful guestolo :-D Again my media centre is being a crap and randomly freezing and causing me to restart. I have attached a hijack this log:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:50:33 PM, on 3/04/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\MagicTune Premium\MagicTuneEngine.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\system\HsMgr.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Program Files\ASUS Xonar DX Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehShell.exe
C:\Program Files\MagicTune Premium\MagicTune.exe
C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\receiver.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\MetaBrowser 2.0\MetaBrowser.exe
C:\Program Files\MagicTune Premium\GammaTray.exe
C:\Program Files\MediaBrowser\MediaBrowser\MediaBrowserService.exe
C:\Program Files\NETGEAR\WNDA3100v2\WNDA3100v2.exe
C:\Program Files\No-IP\DUC30.exe
C:\Windows\eHome\EhTray.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 85.17.80.246 tracker.openbittorrent.com # TORRENT REDIRECT
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MagicTuneEngine] C:\Program Files\MagicTune Premium\MagicTuneEngine.exe
O4 - HKLM\..\Run: [Cmaudio8788] RunDll32 cmicnfgp.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Cmaudio8788GX] C:\Windows\system\HsMgr.exe Envoke
O4 - HKLM\..\Run: [Zune Launcher] "C:\Program Files\Zune\ZuneLauncher.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Windows Media Center] RunDLL32.exe C:\Windows\ehome\ehuihlp.dll,BootMediaCenter
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe
O4 - HKCU\..\Run: [meta<browser/>] C:\Program Files\MetaBrowser\MetaBrowser.exe
O4 - HKCU\..\Run: [NETGEARDigitalEntertainer] C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\receiver.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [JukeFly] C:\Users\Media Centre\AppData\Local\JukeFly\JukeFly.exe
O4 - HKCU\..\Run: [meta<browser/> 2.0] C:\Program Files\MetaBrowser 2.0\MetaBrowser.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: No-IP DUC.lnk = C:\Program Files\No-IP\DUC30.exe
O4 - Global Startup: Big Screen byRemote - Service Controller.lnk = C:\Program Files\mobilewares.net\Big Screen - By Remote\BSEByRemoteController.exe
O4 - Global Startup: GammaTray.lnk = ?
O4 - Global Startup: Media Browser Service.lnk = C:\Program Files\MediaBrowser\MediaBrowser\MediaBrowserService.exe
O4 - Global Startup: NETGEAR WNDA3100v2 Smart Wizard.lnk = ?
O4 - Global Startup: ted.lnk = C:\Program Files\Torrent Episode Downloader\ted.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {2EDF75C0-5ABD-49f9-BAB6-220476A32034} (System Requirements Lab) - http://intel-drv-cdn.systemrequirementslab.com/multi/bin/sysreqlab_srlx.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0E4146AB-FCA5-41D8-A74D-15501DC80E9E}: NameServer = 192.168.0.30
O17 - HKLM\System\CS1\Services\Tcpip\..\{0E4146AB-FCA5-41D8-A74D-15501DC80E9E}: NameServer = 192.168.0.30
O17 - HKLM\System\CS2\Services\Tcpip\..\{0E4146AB-FCA5-41D8-A74D-15501DC80E9E}: NameServer = 192.168.0.30
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Big Screen By Remote HTTP Service (BSEByRemote) - bigscreenglobal.com - C:\Program Files\mobilewares.net\Big Screen - By Remote\BSEByRemoteSvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NETGEAR Receiver Service (recvrsvc.exe) - NETGEAR, Inc. - C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\recvrsvc.exe
O23 - Service: Windows Media Center Guide Service Proxy (wmcGuideServiceProxy) - epgStream.net - C:\Program Files\epgStream.net\wmcGuideServiceProxy\wmcGuideServiceProxyHost.exe
O23 - Service: WSWNDA3100 - Unknown owner - C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe
O23 - Service: XMLTV Download Schedule Service (xmltvDownload) - epgStream.net - C:\Program Files\epgStream.net\xmltvDownload\xmltvDownloadHost.exe

--
End of file - 7643 bytes


I appreciate any help i can get with this!
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Media Centre freezing, stuffing up
« Reply #1 on: April 03, 2011, 09:46:31 AM »
Hi again, can you do the following please
Download [color="#FF0000"]OTL.exe[/color][/url] by OldTimer to your Desktop.
  • Close all windows and right click on OTL.exe and choose to "Run as Administrator"
  • Click Run Scan and let the program run uninterrupted.
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.

Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline htpconvert2

  • Newbie
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Media Centre freezing, stuffing up
« Reply #2 on: April 03, 2011, 07:17:39 PM »
OTL.txt:

OTL logfile created on: 4/04/2011 10:08:41 AM - Run 1
OTL by OldTimer - Version 3.2.22.3    Folder = C:\Users\Media Centre\Desktop
 An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000c09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy
 
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 78.00% Memory free
7.00 Gb Paging File | 5.00 Gb Available in Paging File | 76.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 244.04 Gb Total Space | 203.36 Gb Free Space | 83.33% Space Free | Partition Type: NTFS
Drive D: | 221.62 Gb Total Space | 148.83 Gb Free Space | 67.16% Space Free | Partition Type: NTFS
Drive E: | 298.09 Gb Total Space | 293.76 Gb Free Space | 98.55% Space Free | Partition Type: NTFS
Drive G: | 698.63 Gb Total Space | 361.06 Gb Free Space | 51.68% Space Free | Partition Type: NTFS
 
Computer Name: MEDIACENTRE-PC | User Name: Media Centre | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2011/04/04 10:07:49 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Media Centre\Desktop\OTL.exe
PRC - [2011/03/28 15:25:40 | 000,115,712 | ---- | M] (Microsoft) -- C:\Program Files\MediaBrowser\MediaBrowser\MediaBrowserService.exe
PRC - [2011/02/18 08:53:16 | 001,538,048 | ---- | M] (MetaBrowser) -- C:\Program Files\MetaBrowser 2.0\MetaBrowser.exe
PRC - [2010/11/30 12:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010/11/20 03:17:48 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/20 03:17:10 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 03:17:02 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2010/11/11 11:26:42 | 000,206,360 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2010/11/11 11:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010/10/27 01:51:56 | 000,393,216 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2010/10/27 01:51:28 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2010/10/24 04:43:30 | 001,526,272 | ---- | M] (bigscreenglobal.com) -- C:\Program Files\mobilewares.net\Big Screen - By Remote\BSEByRemoteSvc.exe
PRC - [2010/09/24 12:19:08 | 006,351,600 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Zune\ZuneNss.exe
PRC - [2010/09/24 12:19:08 | 000,159,472 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Zune\ZuneLauncher.exe
PRC - [2010/05/15 12:18:03 | 000,322,352 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2010/03/16 09:16:56 | 001,540,096 | ---- | M] (CMedia) -- C:\Program Files\ASUS Xonar DX Audio\Customapp\AsusAudioCenter.exe
PRC - [2010/02/11 10:00:12 | 003,280,896 | ---- | M] () -- C:\Program Files\NETGEAR\WNDA3100v2\WNDA3100v2.exe
PRC - [2010/02/01 17:53:44 | 002,531,328 | ---- | M] (SEC) -- C:\Program Files\MagicTune Premium\MagicTune.exe
PRC - [2009/12/12 14:20:44 | 001,415,680 | ---- | M] () -- C:\Program Files\No-IP\DUC30.exe
PRC - [2009/11/04 15:31:02 | 000,278,528 | ---- | M] () -- C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe
PRC - [2009/10/05 13:06:46 | 000,036,864 | ---- | M] () -- C:\Program Files\MagicTune Premium\GammaTray.exe
PRC - [2009/05/08 16:28:10 | 000,058,368 | ---- | M] () -- C:\Program Files\MagicTune Premium\MagicTuneEngine.exe
PRC - [2009/04/29 13:22:16 | 003,498,712 | ---- | M] (NETGEAR, Inc.) -- C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\receiver.exe
PRC - [2009/04/29 13:22:16 | 000,172,808 | ---- | M] (NETGEAR, Inc.) -- C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\recvrsvc.exe
PRC - [2008/12/09 04:34:34 | 001,021,768 | ---- | M] (epgStream.net) -- C:\Program Files\epgStream.net\wmcGuideServiceProxy\wmcGuideServiceProxy.exe
PRC - [2008/09/28 00:20:32 | 000,022,016 | ---- | M] (epgStream.net) -- C:\Program Files\epgStream.net\wmcGuideServiceProxy\wmcGuideServiceProxyHost.exe
PRC - [2008/09/28 00:12:00 | 000,040,960 | ---- | M] (epgStream.net) -- C:\Program Files\epgStream.net\xmltvDownload\xmltvDownloadHost.exe
PRC - [2008/09/16 11:03:18 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
PRC - [2008/07/11 14:04:22 | 000,200,704 | ---- | M] () -- C:\Windows\system\HsMgr.exe
 
 
========== Modules (SafeList) ==========
 
MOD - [2011/04/04 10:07:49 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Media Centre\Desktop\OTL.exe
MOD - [2010/11/20 02:55:10 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
 
 
========== Win32 Services (SafeList) ==========
 
SRV - [2010/11/11 11:26:42 | 000,206,360 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2010/11/11 11:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/10/27 01:51:28 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2010/10/24 04:43:30 | 001,526,272 | ---- | M] (bigscreenglobal.com) [Auto | Running] -- C:\Program Files\mobilewares.net\Big Screen - By Remote\BSEByRemoteSvc.exe -- (BSEByRemote)
SRV - [2010/09/24 12:19:16 | 000,444,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ZuneWlanCfgSvc.exe -- (ZuneWlanCfgSvc)
SRV - [2010/09/24 12:19:16 | 000,268,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Zune\WMZuneComm.exe -- (WMZuneComm)
SRV - [2010/09/24 12:19:08 | 006,351,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Zune\ZuneNss.exe -- (ZuneNetworkSvc)
SRV - [2010/03/02 02:00:30 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/12/26 13:47:03 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/11/04 15:31:02 | 000,278,528 | ---- | M] () [Auto | Running] -- C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe -- (WSWNDA3100)
SRV - [2009/07/14 11:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 11:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 11:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 11:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/04/29 13:22:16 | 000,172,808 | ---- | M] (NETGEAR, Inc.) [Auto | Running] -- C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\recvrsvc.exe -- (recvrsvc.exe)
SRV - [2008/09/28 00:20:32 | 000,022,016 | ---- | M] (epgStream.net) [Auto | Running] -- C:\Program Files\epgStream.net\wmcGuideServiceProxy\wmcGuideServiceProxyHost.exe -- (wmcGuideServiceProxy)
SRV - [2008/09/28 00:12:00 | 000,040,960 | ---- | M] (epgStream.net) [Auto | Running] -- C:\Program Files\epgStream.net\xmltvDownload\xmltvDownloadHost.exe -- (xmltvDownload)
SRV - [2008/09/16 11:03:18 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor7.0)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2011/04/03 19:36:05 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{709992FD-F996-49A2-ACD3-B43886C3684D}\MpKslaabf2577.sys -- (MpKslaabf2577)
DRV - [2010/11/20 03:30:16 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 03:30:16 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 03:30:16 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 01:24:42 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 00:59:46 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 00:14:46 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 00:14:42 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/10/27 02:59:16 | 006,573,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2010/10/27 02:59:16 | 006,573,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2010/10/27 01:14:04 | 000,229,888 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2010/10/24 20:25:38 | 000,054,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2010/10/24 20:25:38 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/09/23 05:19:02 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\taphss.sys -- (taphss)
DRV - [2010/06/16 10:52:35 | 000,038,944 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2010/04/29 05:58:18 | 000,026,112 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\androidusb.sys -- (androidusb)
DRV - [2010/04/07 14:07:40 | 001,500,672 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\cmudaxp.sys -- (cmudaxp)
DRV - [2010/02/24 14:11:40 | 000,023,920 | ---- | M] (MediaMall Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\povrtdev.sys -- (msvad_simple)
DRV - [2009/12/26 11:28:42 | 000,483,200 | ---- | M] (ITETech    ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AF15BDA.sys -- (AF15BDA)
DRV - [2009/11/18 16:02:24 | 000,014,848 | ---- | M] (Samsung Electronics, Inc. ) [Kernel | System | Running] -- C:\Windows\system32\drivers\MTiCtwl.sys -- (MagicTune)
DRV - [2009/11/06 08:37:20 | 000,699,896 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\bcmwlhigh6.sys -- (BCMH43XX)
DRV - [2009/10/20 10:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\npf.sys -- (NPF)
DRV - [2009/07/14 09:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/06/29 22:59:00 | 000,101,392 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009/04/29 13:22:08 | 000,022,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\imvad.sys -- (imvad_multi)
DRV - [2008/11/05 04:21:04 | 000,083,296 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\jraid.sys -- (JRAID)
DRV - [2007/10/16 16:14:24 | 000,256,512 | ---- | M] (Marvell Semiconductor, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MRVW13B.sys -- (MRV6X32P)
DRV - [2007/01/19 18:20:54 | 000,021,728 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\scmndisp.sys -- (SCMNdisP)
DRV - [2005/12/29 17:07:50 | 000,282,624 | ---- | M] (Marvell Semiconductor, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WG311v3XP.sys -- (W8335XP) NETGEAR WG311v3 802.11g Wireless PCI Adapter for Windows XP (8335)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ninemsn.com.au/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-AU
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = FD 60 BE F7 DA E2 CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..extensions.enabledItems: {59c81df5-4b7a-477b-912d-4e0fdf64e5f2}:0.9.86.1
FF - prefs.js..extensions.enabledItems: {DA1B0AB5-7DD3-4066-BC2A-64AABBDD0A8B}:1.2.310
FF - prefs.js..extensions.enabledItems: {195A3098-0BD5-4e90-AE22-BA1C540AFD1E}:2.9.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/03 12:41:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/04/03 12:41:41 | 000,000,000 | ---D | M]
 
[2009/12/28 12:03:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Media Centre\AppData\Roaming\Mozilla\Extensions
[2011/04/03 15:57:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Media Centre\AppData\Roaming\Mozilla\Firefox\Profiles\8z3u68y3.default\extensions
[2011/04/01 13:28:31 | 000,000,000 | ---D | M] (Garmin Communicator) -- C:\Users\Media Centre\AppData\Roaming\Mozilla\Firefox\Profiles\8z3u68y3.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
[2011/04/01 13:29:13 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Users\Media Centre\AppData\Roaming\Mozilla\Firefox\Profiles\8z3u68y3.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2011/04/01 13:29:13 | 000,000,000 | ---D | M] (Net Usage Item) -- C:\Users\Media Centre\AppData\Roaming\Mozilla\Firefox\Profiles\8z3u68y3.default\extensions\{DA1B0AB5-7DD3-4066-BC2A-64AABBDD0A8B}
[2011/02/22 20:58:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/05/01 10:01:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/08/21 12:24:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/11/13 10:37:35 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/02/22 20:58:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/02/02 20:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
 
O1 HOSTS File: ([2010/07/26 09:30:55 | 000,000,915 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1            activate.adobe.com
O1 - Hosts: 85.17.80.246 tracker.openbittorrent.com # TORRENT REDIRECT
O4 - HKLM..\Run: [Cmaudio8788] File not found
O4 - HKLM..\Run: [Cmaudio8788GX] C:\Windows\system\HsMgr.exe ()
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [MagicTuneEngine] C:\Program Files\MagicTune Premium\MagicTuneEngine.exe ()
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [Zune Launcher] C:\Program Files\Zune\ZuneLauncher.exe (Microsoft Corporation)
O4 - HKCU..\Run: [JukeFly] C:\Users\Media Centre\AppData\Local\JukeFly\JukeFly.exe ()
O4 - HKCU..\Run: [meta<browser/>] File not found
O4 - HKCU..\Run: [meta<browser/> 2.0] C:\Program Files\MetaBrowser 2.0\MetaBrowser.exe (MetaBrowser)
O4 - HKCU..\Run: [NETGEARDigitalEntertainer] C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\receiver.exe (NETGEAR, Inc.)
O4 - HKCU..\Run: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe (PeerBlock, LLC)
O4 - HKCU..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - Startup: C:\Users\Media Centre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\No-IP DUC.lnk = C:\Program Files\No-IP\DUC30.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {2EDF75C0-5ABD-49f9-BAB6-220476A32034} http://intel-drv-cdn.systemrequirementslab.com/multi/bin/sysreqlab_srlx.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 07:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{cf36e8f1-4aac-11df-b69c-001d7daf31dc}\Shell - "" = AutoRun
O33 - MountPoints2\{cf36e8f1-4aac-11df-b69c-001d7daf31dc}\Shell\AutoRun\command - "" = "H:\WD SmartWare.exe" autoplay=true
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011/04/04 10:07:42 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Media Centre\Desktop\OTL.exe
[2011/04/03 15:49:17 | 000,000,000 | ---D | C] -- C:\Users\Media Centre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2011/04/03 15:49:16 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/04/03 11:14:52 | 000,000,000 | ---D | C] -- C:\ProgramData\MetaBrowser
[2011/04/01 14:31:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Browser
[2011/04/01 14:17:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/04/01 14:17:23 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2011/04/01 14:16:19 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/04/01 14:15:50 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/04/01 13:56:44 | 000,000,000 | ---D | C] -- C:\Users\Media Centre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetaBrowser 2.0
[2011/04/01 13:56:43 | 000,000,000 | ---D | C] -- C:\ProgramData\MetaBrowser 2.0
[2011/04/01 13:56:43 | 000,000,000 | ---D | C] -- C:\Program Files\MetaBrowser 2.0
[2011/03/27 09:27:57 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/03/27 09:27:57 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/03/15 16:28:45 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2011/03/15 16:28:45 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2011/03/15 16:28:45 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2011/03/15 16:28:45 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2011/03/15 16:28:45 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/03/15 16:28:45 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011/03/15 16:28:45 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011/03/15 16:28:44 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2011/03/15 16:28:44 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/03/15 16:28:44 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011/03/15 16:28:44 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/03/15 16:28:44 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011/03/15 16:28:44 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2011/03/15 16:28:44 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/03/15 16:28:44 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2011/03/15 16:28:44 | 000,353,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/03/15 16:28:44 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011/03/15 16:28:44 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2011/03/15 16:28:44 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/03/15 16:28:44 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2011/03/15 16:28:44 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2011/03/15 16:28:44 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011/03/15 16:28:44 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2011/03/15 16:28:44 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2011/03/15 16:28:44 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2011/03/15 16:28:44 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2011/03/15 16:28:44 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2011/03/15 16:28:44 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2011/03/15 16:28:44 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2011/03/15 16:28:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2011/03/15 16:28:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2011/03/15 16:28:44 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011/03/15 16:28:43 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011/03/15 16:28:43 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011/03/15 16:28:43 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2011/03/15 16:28:43 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2011/03/15 16:28:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/03/15 16:28:43 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2011/03/15 16:28:43 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2011/03/10 16:28:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/03/10 16:28:32 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/03/10 16:26:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/03/09 08:36:59 | 001,076,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011/03/09 08:36:58 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011/03/09 08:36:57 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011/03/09 08:36:57 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2011/03/09 08:36:57 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011/03/09 08:36:57 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011/03/07 15:03:46 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Trailers
[2010/06/16 11:11:39 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Media Centre\AppData\Roaming\pcouffin.sys
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2011/04/04 10:07:49 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Media Centre\Desktop\OTL.exe
[2011/04/04 07:06:51 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/04/03 18:53:02 | 000,178,176 | ---- | M] () -- C:\Users\Media Centre\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/03 15:50:05 | 000,013,472 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/04/03 15:50:05 | 000,013,472 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/04/03 15:49:17 | 000,002,995 | ---- | M] () -- C:\Users\Media Centre\Desktop\HiJackThis.lnk
[2011/04/03 15:47:51 | 000,630,124 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/04/03 15:47:51 | 000,111,208 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/04/03 15:41:45 | 2817,384,448 | -HS- | M] () -- C:\hiberfil.sys
[2011/04/03 11:40:48 | 000,000,553 | ---- | M] () -- C:\Windows\tasks\_viceversapr2_task_Back-up.job
[2011/04/01 14:31:45 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Media Browser.lnk
[2011/04/01 14:31:45 | 000,001,241 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Media Browser Service.lnk
[2011/04/01 14:17:42 | 000,001,795 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/04/01 13:56:45 | 000,002,041 | ---- | M] () -- C:\Users\Media Centre\Desktop\MetaBrowser 2.0.lnk
[2011/03/28 16:36:23 | 000,000,421 | ---- | M] () -- C:\Users\Media Centre\Documents\Zune Pass.rtf
[2011/03/20 18:28:41 | 000,001,173 | ---- | M] () -- C:\Users\Media Centre\AppData\Roaming\vso_ts_preview.xml
[2011/03/15 16:32:41 | 000,001,453 | ---- | M] () -- C:\Users\Media Centre\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/03/15 16:28:45 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2011/03/15 16:28:45 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2011/03/15 16:28:45 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2011/03/15 16:28:45 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2011/03/15 16:28:45 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/03/15 16:28:45 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011/03/15 16:28:45 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011/03/15 16:28:44 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2011/03/15 16:28:44 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/03/15 16:28:44 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011/03/15 16:28:44 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/03/15 16:28:44 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011/03/15 16:28:44 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2011/03/15 16:28:44 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/03/15 16:28:44 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2011/03/15 16:28:44 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/03/15 16:28:44 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011/03/15 16:28:44 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2011/03/15 16:28:44 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/03/15 16:28:44 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2011/03/15 16:28:44 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2011/03/15 16:28:44 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011/03/15 16:28:44 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2011/03/15 16:28:44 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2011/03/15 16:28:44 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2011/03/15 16:28:44 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2011/03/15 16:28:44 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2011/03/15 16:28:44 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2011/03/15 16:28:44 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2011/03/15 16:28:44 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2011/03/15 16:28:44 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2011/03/15 16:28:44 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2011/03/15 16:28:44 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011/03/15 16:28:43 | 001,797,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011/03/15 16:28:43 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011/03/15 16:28:43 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2011/03/15 16:28:43 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2011/03/15 16:28:43 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/03/15 16:28:43 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2011/03/15 16:28:43 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2011/04/03 15:49:17 | 000,002,995 | ---- | C] () -- C:\Users\Media Centre\Desktop\HiJackThis.lnk
[2011/04/01 14:31:45 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Media Browser.lnk
[2011/04/01 14:17:42 | 000,001,795 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/04/01 13:56:45 | 000,002,041 | ---- | C] () -- C:\Users\Media Centre\Desktop\MetaBrowser 2.0.lnk
[2011/03/15 16:32:41 | 000,001,459 | ---- | C] () -- C:\Users\Media Centre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/03/15 16:28:44 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2011/03/10 16:25:51 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/02/22 21:04:12 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011/02/11 11:21:06 | 000,819,200 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/02/11 11:21:06 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011/01/21 06:36:02 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2010/10/27 01:13:04 | 000,023,040 | ---- | C] () -- C:\Windows\System32\atitmpxx.dll
[2010/10/08 10:19:27 | 000,000,053 | ---- | C] () -- C:\Windows\System32\cmasiop.ini
[2010/10/08 10:10:39 | 000,086,343 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfl
[2010/10/08 10:10:38 | 000,557,056 | ---- | C] () -- C:\Windows\System32\Cmeauoxy.exe
[2010/10/08 10:09:50 | 000,303,104 | ---- | C] () -- C:\Windows\System32\CmiInstallResAll.dll
[2010/10/08 10:09:50 | 000,004,967 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfg
[2010/10/08 10:09:50 | 000,000,894 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.imi
[2010/10/04 14:43:56 | 000,003,184 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Windows Media Audio 10 Codec.dat
[2010/10/04 14:42:29 | 000,003,018 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp FLAC Codec.dat
[2010/10/04 14:36:41 | 000,008,457 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp DSP Effects.dat
[2010/10/04 14:36:36 | 000,415,408 | ---- | C] () -- C:\Windows\System32\SpoonUninstall.exe
[2010/10/04 14:36:36 | 000,013,281 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Music Converter.dat
[2010/09/22 17:27:52 | 000,223,990 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2010/09/17 17:17:02 | 000,002,888 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2010/06/16 11:12:28 | 000,001,173 | ---- | C] () -- C:\Users\Media Centre\AppData\Roaming\vso_ts_preview.xml
[2010/06/16 11:11:39 | 000,087,608 | ---- | C] () -- C:\Users\Media Centre\AppData\Roaming\inst.exe
[2010/06/16 11:11:39 | 000,007,887 | ---- | C] () -- C:\Users\Media Centre\AppData\Roaming\pcouffin.cat
[2010/06/16 11:11:39 | 000,001,144 | ---- | C] () -- C:\Users\Media Centre\AppData\Roaming\pcouffin.inf
[2010/05/05 14:22:02 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010/04/13 09:51:55 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.dll
[2009/12/30 19:11:43 | 000,178,176 | ---- | C] () -- C:\Users\Media Centre\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/26 12:36:06 | 000,000,219 | ---- | C] () -- C:\Windows\System32\wmcGuideServiceProxy.ini
[2009/12/26 12:36:06 | 000,000,182 | ---- | C] () -- C:\Windows\System32\xmltvDownload.ini
[2009/12/26 11:28:57 | 000,299,008 | ---- | C] () -- C:\Windows\afaunist.exe
[2009/12/26 11:28:57 | 000,002,027 | ---- | C] () -- C:\Windows\TVAfaDrv.ini
[2009/12/26 11:28:54 | 000,000,308 | ---- | C] () -- C:\Windows\System32\AF15IRTBL.bin
[2009/12/26 11:20:22 | 000,021,316 | ---- | C] () -- C:\Windows\System32\emptyregdb.dat
[2009/12/26 11:14:13 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2009/08/16 10:08:36 | 000,178,176 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2009/07/14 14:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 14:33:53 | 000,276,984 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 12:05:48 | 000,630,124 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 12:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 12:05:48 | 000,111,208 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 12:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 12:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 12:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 09:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 09:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 09:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/11 07:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2007/12/19 20:51:40 | 000,000,560 | ---- | C] () -- C:\Windows\cmudaxp.ini
[2007/02/05 20:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 172 bytes -> C:\ProgramData\TEMP:0888F409

< End of report >


Extras.txt:

OTL Extras logfile created on: 4/04/2011 10:08:41 AM - Run 1
OTL by OldTimer - Version 3.2.22.3    Folder = C:\Users\Media Centre\Desktop
 An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000c09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy
 
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 78.00% Memory free
7.00 Gb Paging File | 5.00 Gb Available in Paging File | 76.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 244.04 Gb Total Space | 203.36 Gb Free Space | 83.33% Space Free | Partition Type: NTFS
Drive D: | 221.62 Gb Total Space | 148.83 Gb Free Space | 67.16% Space Free | Partition Type: NTFS
Drive E: | 298.09 Gb Total Space | 293.76 Gb Free Space | 98.55% Space Free | Partition Type: NTFS
Drive G: | 698.63 Gb Total Space | 361.06 Gb Free Space | 51.68% Space Free | Partition Type: NTFS
 
Computer Name: MEDIACENTRE-PC | User Name: Media Centre | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"49152:UDP" = 49152:UDP:*:Enabled:UDP49152
"49153:UDP" = 49153:UDP:*:Enabled:UDP49153
"49154:UDP" = 49154:UDP:*:Enabled:UDP49154
"49155:UDP" = 49155:UDP:*:Enabled:UDP49155
"49156:TCP" = 49156:TCP:*:Enabled:TCP49156
"49158:TCP" = 49158:TCP:*:Enabled:TCP49158
"49159:TCP" = 49159:TCP:*:Enabled:TCP49159
"" =
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"" =
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"49152:UDP" = 49152:UDP:*:Enabled:UDP49152
"49153:UDP" = 49153:UDP:*:Enabled:UDP49153
"49154:UDP" = 49154:UDP:*:Enabled:UDP49154
"49155:UDP" = 49155:UDP:*:Enabled:UDP49155
"49156:TCP" = 49156:TCP:*:Enabled:TCP49156
"49158:TCP" = 49158:TCP:*:Enabled:TCP49158
"49159:TCP" = 49159:TCP:*:Enabled:TCP49159
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\sjcmdwiz.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\sjcmdwiz.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- (NETGEAR, Inc.)
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\receiver.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\receiver.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- (NETGEAR, Inc.)
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\tagtool.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\tagtool.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- (NETGEAR, Inc.)
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\sharefolder.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\sharefolder.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- (NETGEAR, Inc.)
"" =
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\ffmpeg.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\ffmpeg.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- ()
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\receiver.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\receiver.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- (NETGEAR, Inc.)
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\tagtool.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\tagtool.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- (NETGEAR, Inc.)
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\sjcmdwiz.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\sjcmdwiz.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- (NETGEAR, Inc.)
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\sharefolder.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\sharefolder.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- (NETGEAR, Inc.)
"" =
"C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\ffmpeg.exe" = C:\Program Files\NETGEAR\NETGEAR Digital Entertainer for Windows\ffmpeg.exe:*:Enabled:NETGEAR Digital Entertainer for Windows -- ()
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.0+ (r404)
"{06B72825-1034-4BEC-9037-D422486E2D82}" = MusicArt
"{07EEE598-5F21-4B57-B40B-46592625B3D9}" = Zune Language Pack (PTB)
"{1BFF0EA4-DFD8-8E28-90D4-8E435C7E0AAB}" = Catalyst Control Center InstallProxy
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1" = Media Player Classic - Home Cinema v. 1.3.1249.0
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 24
"{2A697B53-0DE3-42DA-B41D-C3F804B1C538}" = iTunes
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}" = Apple Application Support
"{2EDC86B3-E984-2F11-0C2F-8D6DA0353ED7}" = CCC Help English
"{38A53777-BA16-41D4-A072-DA3EC613CCC3}" = EPG Collector
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = Gigabyte Raid Configurer
"{3A7C8786-F407-1AF2-510E-63804A814C32}" = Catalyst Control Center Graphics Full New
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}" = NETGEAR WNDA3100v2 wireless USB 2.0 adapter
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4F5840BD-37BD-4B4C-6D58-B8BC7A594DA1}" = ccc-core-static
"{531BC138-F1F7-496B-879C-F039ECEF438D}" = Adobe Photoshop Lightroom 2
"{5416AC62-E1FE-42E7-80D2-D866ED702BDC}" = XMLTV Guide Pack v1.0.25
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{59625CC8-69B3-4917-864B-3CE27B76DCF3}" = MagicTunePremium
"{5C93E291-A1CC-4E51-85C6-E194209FCDB4}" = Zune Language Pack (PTG)
"{5CEBCEE1-1405-4B87-87B2-4A85A0297EB1}" = pgc.NET v2.0.0.0
"{5FEF2C49-9133-0BB1-A5E5-111D6FF88504}" = ccc-utility
"{6421F085-1FAA-DE13-D02A-CFB412C522A4}" = Acrobat.com
"{65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}" = Garmin USB Drivers
"{6740BCB0-5863-47F4-80F4-44F394DE4FE2}" = Zune Language Pack (NLD)
"{69A13D2F-A08F-619A-1D42-94CB96F3635A}" = ATI Catalyst Install Manager
"{69CAB146-08E3-64A4-F9C6-FC3D0A962E37}" = Catalyst Control Center Graphics Light
"{6B33492E-FBBC-4EC3-8738-09E16E395A10}" = Zune Language Pack (ESP)
"{7006ED29-58F2-40C3-AE87-039287AD20B6}" = Zune
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}" = Microsoft Security Client
"{7B6202FC-9F96-48F6-8D86-746F3CED438A}" = TMPGEnc 4.0 XPress
"{85CCB5C8-AF22-4E47-BCAC-DD659DE77DF4}" = Big Screen EPG
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8E0B96CD-28A2-6D67-F629-372B81751C92}" = Catalyst Control Center Core Implementation
"{8F1602B2-9923-46D3-AC87-95BB6BF5CD04}" = Big Screen byRemote
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A14CB363-D717-2EBB-9D84-1DAE75764181}" = Catalyst Control Center HydraVision Full
"{A28EBFC2-EB5D-40CA-A2D7-AD383067B55E}" = meta<browser/> 2.0
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A8BBB56E-9C7E-4B91-9E1B-98B19B353400}" = Media Browser
"{AC363598-9D70-0357-8DA4-9598A05B48EA}" = Catalyst Control Center Graphics Full Existing
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.2
"{B909D476-A90E-4A8F-B247-8C75A82FA869}" = NETGEAR Digital Entertainer for Windows
"{BE236D9A-52EC-4A17-82DA-84B5EAD31E3E}" = Zune Language Pack (DEU)
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C5D37FFA-7483-410B-982B-91E93FD3B7DA}" = Zune Language Pack (ITA)
"{C68D33B1-0204-4EBE-BC45-A6E432B1D13A}" = Zune Language Pack (FRA)
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CB6075D9-F912-40AE-BEA6-E590DA24F16B}" = Adobe Photoshop Elements 7.0
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{D17111CB-C992-42A9-9D56-C19395102AAA}" = Garmin WebUpdater
"{D9D93D74-107D-4BD3-87D0-AABCF7C98BD5}" = Catalyst Control Center - Branding
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.9.322
"{E7861D15-407C-3328-E2F7-CFE5C04A32F4}" = Catalyst Control Center Graphics Previews Vista
"{EBBCBC9A-1281-D33E-4AD2-C3E8A36D9E1F}" = Catalyst Control Center Graphics Previews Common
"{EF5A9ABD-1537-49CD-BD88-1DAB5F4BDFAF}" = Garmin City Navigator Australia and New Zealand NT 2010.30
"{F2CB8C3C-9C9E-4FAB-9067-655601C5F748}" = Windows Mobile Device Updater Component
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"49CF605F02C7954F4E139D18828DE298CD59217C" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)
"7-Zip" = 7-Zip 4.65
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 7" = Adobe Photoshop Elements 7.0
"avi.NET 3.2.0.0" = avi.NET 3.2.0.0
"AviSynth" = AviSynth 2.5
"Big Screen byRemote" = Big Screen byRemote
"CCleaner" = CCleaner
"C-Media Oxygen HD Audio Driver" = ASUS Xonar DX Audio Driver
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"dBpoweramp DSP Effects" = dBpoweramp DSP Effects
"dBpoweramp FLAC Codec" = dBpoweramp FLAC Codec
"dBpoweramp Music Converter" = dBpoweramp Music Converter
"dBpoweramp Windows Media Audio 10 Codec" = dBpoweramp Windows Media Audio 10 Codec
"DVDFab 7_is1" = DVDFab 7.0.3.0 (26/03/2010)
"Juice" = Juice 2.2
"Media Center Master_is1" = Media Center Master v1.22
"MediaInfo" = MediaInfo 0.7.28
"MeGUI" = MeGUI (remove only)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox (3.6.16)" = Mozilla Firefox (3.6.16)
"NoIPDUC" = No-IP DUC
"Notepad++" = Notepad++
"OpenAL" = OpenAL
"Recuva" = Recuva
"SystemRequirementsLab" = System Requirements Lab
"Torrent Episode Downloader 0.9715" = Torrent Episode Downloader
"TVAfaDrv" = Digitalnow Dual Digital PCI
"uTorrent" = µTorrent
"ViceVersa Pro 2.5_is1" = ViceVersa Pro 2.5 (Build 2500)
"VideoReDo-Plus_is1" = VideoReDo/Plus Version 2.5.4.507
"Xvid_is1" = Xvid 1.2.2 final uninstall
"Zune" = Zune
 
========== Last 10 Event Log Errors ==========
 
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
 
< End of report >


Thanks! :-D
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Media Centre freezing, stuffing up
« Reply #3 on: April 03, 2011, 08:20:22 PM »
Let's try the following, see if we can clean or uncover anything

Please download TFC by Old Timer and save it to your desktop.
http://oldtimer.geekstogo.com/TFC.exe
Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it.
Right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately.

Back in Windows
download Malwarebytes' Anti-Malware from Here or Here
Save the installer to desktop

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.    
  • If an update is found, it will download and install the latest version.    
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.    
  • The scan may take some time to finish,so please be patient.    
  • When the scan is complete, click OK, then Show Results to view the results.    
  • Make sure that everything is checked, and click Remove Selected.
        * When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)    
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.    
  • Copy&Paste the entire report in your next reply
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline htpconvert2

  • Newbie
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Media Centre freezing, stuffing up
« Reply #4 on: April 03, 2011, 08:34:58 PM »
Looks like it is clean?

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6262

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

4/04/2011 11:31:29 AM
mbam-log-2011-04-04 (11-31-29).txt

Scan type: Quick scan
Objects scanned: 146279
Time elapsed: 3 minute(s), 21 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Media Centre freezing, stuffing up
« Reply #5 on: April 04, 2011, 12:00:38 AM »
Can you look at the following link for some tips, especially the last reply
Let me know if anything helps please
http://answers.microsoft.com/en-us/windows/forum/windows_7-windows_programs/windows-7-media-center-live-tv-keeps-freezing-up/5c971ba6-af1b-4f1b-ab38-8ce1d4f47422
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline htpconvert2

  • Newbie
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Media Centre freezing, stuffing up
« Reply #6 on: April 04, 2011, 08:15:04 PM »
i haven't had any freezing since running those last 2 programmes. I also set my video card to process the rendering etc. Seems a bit more stable at the moment :-) i'll keep a watch to see if anything stuffs up during the week.
Logged
Pages: [1]
« previous next »