WiredWX Christian Hobby Weather Tools
Would you like to react to this message? Create an account in a few clicks or log in to continue.

WiredWX Christian Hobby Weather ToolsLog in

 


Motherboard fan slows down, speeds up, slows down, stops and computer restarts.

2 posters

descriptionMotherboard fan slows down, speeds up, slows down, stops and computer restarts. EmptyMotherboard fan slows down, speeds up, slows down, stops and computer restarts.5th November 2010, 2:00 pm

more_horiz
I finally had to do a system restore two days ago which helped somewhat because the fan was humming nicely all day yesterday. This morning the same thing happened. I downloaded OLT and have the results, posting the two might be too much, so here is the OTL

OTL logfile created on: 11/4/2010 2:40:33 PM - Run 1
OTL by OldTimer - Version 3.2.17.2 Folder = C:\Documents and Settings\Doris E. Aubichon\My Documents\Downloads\Sharing
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

991.00 Mb Total Physical Memory | 411.00 Mb Available Physical Memory | 41.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 74.00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.55 Gb Total Space | 30.75 Gb Free Space | 41.25% Space Free | Partition Type: NTFS
Drive F: | 465.76 Gb Total Space | 369.03 Gb Free Space | 79.23% Space Free | Partition Type: NTFS

Computer Name: PERSONAL-51C987 | User Name: Doris E. Aubichon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/11/04 14:36:59 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Doris E. Aubichon\My Documents\Downloads\Sharing\OTL.com
PRC - [2010/09/03 13:08:10 | 002,618,368 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\CBS Interactive\CNET TechTracker\TechTracker.exe
PRC - [2010/08/09 14:53:18 | 000,140,608 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
PRC - [2010/07/18 09:53:39 | 000,693,016 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgcsrvx.exe
PRC - [2010/07/18 09:53:39 | 000,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2010/07/18 09:53:33 | 000,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2010/07/18 09:53:25 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2010/07/18 09:53:24 | 000,761,600 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgscanx.exe
PRC - [2010/07/18 09:53:20 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgemc.exe
PRC - [2010/07/18 09:53:19 | 000,832,792 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgam.exe
PRC - [2010/05/14 15:06:30 | 000,406,848 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe
PRC - [2010/04/26 22:52:48 | 000,442,368 | ---- | M] (www.CrazyBrowser.com) -- C:\Program Files\Crazy Browser\Crazy Browser.exe
PRC - [2009/03/08 04:31:54 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msfeedssync.exe
PRC - [2008/12/09 18:40:16 | 000,464,264 | ---- | M] () -- C:\Program Files\AskBarDis\bar\bin\AskService.exe
PRC - [2008/12/09 18:40:16 | 000,234,888 | ---- | M] () -- C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
PRC - [2008/11/06 14:29:02 | 000,174,848 | ---- | M] (BinarySense Ltd.) -- C:\Program Files\Common Files\BinarySense\disksvc.exe
PRC - [2008/09/10 09:22:32 | 000,229,648 | ---- | M] (Uniblue) -- C:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe
PRC - [2008/04/13 18:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/01/24 18:54:06 | 001,265,664 | ---- | M] (SpotMau Software Company) -- C:\Program Files\Spotmau WinCare 2008\sub\Desktop_Secretary\Desktop_Secretary.exe
PRC - [2007/12/23 21:33:10 | 000,139,264 | ---- | M] () -- C:\Program Files\Spotmau WinCare 2008\sub\FSDRIVER\FolderProtect.exe
PRC - [2007/12/22 00:23:34 | 000,010,240 | ---- | M] () -- C:\Program Files\Spotmau WinCare 2008\sub\FSDRIVER\FolderProtectService.exe
PRC - [2007/05/17 15:45:33 | 000,271,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2007/04/16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe


========== Modules (SafeList) ==========

MOD - [2010/11/04 14:36:59 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Doris E. Aubichon\My Documents\Downloads\Sharing\OTL.com
MOD - [2010/08/23 10:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - File not found [Auto | Stopped] -- C:\windows\System32\IoctlSvc.exe -- (PLFlash DeviceIoControl Service)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe -- (Nero BackItUp Scheduler 3)
SRV - [2010/09/01 15:51:28 | 000,066,112 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper) getPlus(R)
SRV - [2010/08/09 14:53:18 | 000,140,608 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe -- (NanoServiceMain)
SRV - [2010/07/18 09:53:25 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd)
SRV - [2010/07/18 09:53:20 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgemc.exe -- (avg8emc)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/09/25 23:32:18 | 000,189,736 | ---- | M] (Seagate Technology LLC) [Auto | Stopped] -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service)
SRV - [2008/12/09 18:40:16 | 000,464,264 | ---- | M] () [Auto | Running] -- C:\Program Files\AskBarDis\bar\bin\AskService.exe -- (ASKService)
SRV - [2008/12/09 18:40:16 | 000,234,888 | ---- | M] () [Auto | Running] -- C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe -- (ASKUpgrade)
SRV - [2008/11/06 14:29:02 | 000,174,848 | ---- | M] (BinarySense Ltd.) [Auto | Running] -- C:\Program Files\Common Files\BinarySense\disksvc.exe -- (HDD & SSD access service)
SRV - [2008/09/10 09:22:32 | 000,229,648 | ---- | M] (Uniblue) [Auto | Running] -- C:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe -- (Uniblue DiskRescue)
SRV - [2007/12/22 00:23:34 | 000,010,240 | ---- | M] () [Auto | Running] -- C:\Program Files\Spotmau WinCare 2008\sub\FSDRIVER\FolderProtectService.exe -- (FolderProtectService)
SRV - [2007/05/17 15:45:33 | 000,271,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\windows\System32\DRIVERS\SymIM.sys -- (SymIMMP)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\windows\System32\DRIVERS\SymIM.sys -- (SymIM)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\windows\System32\DRIVERS\mcdbus.sys -- (mcdbus)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\windows\System32\DRIVERS\klim5.sys -- (klim5)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\DORISE~1.AUB\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2010/07/21 22:02:06 | 000,112,456 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINProt.sys -- (PSINPROT)
DRV - [2010/07/21 22:02:06 | 000,097,096 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINFile.sys -- (PSINFILE)
DRV - [2010/07/18 09:53:39 | 000,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\windows\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/07/18 09:53:39 | 000,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\windows\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/07/18 09:53:34 | 000,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\windows\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/07/18 09:53:19 | 000,012,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\windows\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2010/06/17 13:41:12 | 000,129,992 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\PSINKNC.sys -- (PSINKNC)
DRV - [2010/05/27 18:39:32 | 000,141,384 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINAflt.sys -- (PSINAFLT)
DRV - [2010/04/30 13:46:52 | 000,111,624 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINProc.sys -- (PSINPROC)
DRV - [2010/04/12 02:40:28 | 000,019,200 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp)
DRV - [2010/04/12 02:17:36 | 000,324,608 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2009/09/25 06:45:50 | 000,722,416 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2009/02/24 13:35:32 | 000,009,464 | ---- | M] (Sonic Solutions) [Kernel | System | Stopped] -- C:\windows\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2009/02/24 13:35:32 | 000,009,336 | ---- | M] (Sonic Solutions) [Kernel | System | Stopped] -- C:\windows\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2008/09/24 10:40:22 | 004,122,368 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008/04/13 12:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/01/10 22:47:00 | 000,015,616 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Spotmau WinCare 2008\sub\FSDRIVER\FolderProtectDriver.sys -- (FolderProtectDriver)
DRV - [2007/04/12 15:46:36 | 000,034,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2006/06/16 10:04:38 | 000,035,712 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\SISAGPX.sys -- (SISAGP)
DRV - [2004/08/03 16:31:36 | 000,032,768 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC)
DRV - [2004/03/26 13:08:54 | 000,122,112 | ---- | M] (Cisco-Linksys LLC.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vnet58lx.sys -- (FVNETusb)
DRV - [2003/03/25 17:50:46 | 000,004,096 | R--- | M] (Silicon Integrated Systems Corp.) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\siside.sys -- (SiSide)
DRV - [2002/10/17 15:14:46 | 000,049,024 | R--- | M] (Windows (R) 2000 DDK provider) [File_System | Boot | Running] -- C:\windows\system32\drivers\sisidex.sys -- (sisidex)
DRV - [2002/08/20 17:19:08 | 000,009,472 | R--- | M] (Silicon Integrated Systems Corp.) [Kernel | Boot | Running] -- C:\windows\system32\drivers\sisperf.sys -- (sisperf)
DRV - [2001/08/17 13:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
DRV - [2001/08/17 06:12:40 | 000,019,017 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8029.sys -- (rtl8029) Realtek RTL8029(AS)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?scope=web&mkt=en-CA&FORM=MSNH14
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 96 F2 07 15 FE 1C CA 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://search.conduit.com?SearchSource=10&ctid=CT2004933
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKCU\..\URLSearchHook: {ad708c09-d51b-45b3-9d28-4eba2681febf} - C:\Program Files\Download_Energy\tbDow1.dll File not found
IE - HKCU\..\URLSearchHook: {bc3abe80-8ccd-4093-955d-a087dda18266} - C:\Program Files\Shareware.Pro-EN\tbSha0.dll File not found
IE - HKCU\..\URLSearchHook: {da21bd13-ca22-42e3-a071-98f08f1ca1e7} - C:\Program Files\Peer2Peer-EN\tbPee1.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Ask"
FF - prefs.js..browser.search.defaultthis.engineName: "Peer2Peer-EN Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/search?FORM=IEFM1&q="
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.param.yahoo-fr: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-type: "${8}"
FF - prefs.js..browser.search.selectedEngine: "Ask"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://ca.my.yahoo.com/"
FF - prefs.js..extensions.enabledItems: {097d3191-e6fa-4728-9826-b533d755359d}:0.7.11
FF - prefs.js..extensions.enabledItems: {E9A1DEE0-C623-4439-8932-001E7D17607D}:2.1.0.5
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.3
FF - prefs.js..extensions.enabledItems: {71C54606-83ED-4ea6-9315-1AAB29466D33}:3.1
FF - prefs.js..extensions.enabledItems: {9bc51d13-3849-4541-a69c-da418934ca05}:1.7
FF - prefs.js..extensions.enabledItems: {6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3}:1.3.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.5.2
FF - prefs.js..extensions.enabledItems: {d33c2f7c-b1e6-4d46-ab0e-be1f6d05c904}:2.0.2
FF - prefs.js..extensions.enabledItems: foxmarks@kei.com:3.5.10
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.2.20100119091315
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5.0.429
FF - prefs.js..extensions.enabledItems: {d62e0de0-401b-11dd-ae16-0800200c9a66}:4.5.4
FF - prefs.js..extensions.enabledItems: {d122ad80-ff45-11dd-87af-0800200c9a66}:3.6.29.01.10
FF - prefs.js..extensions.enabledItems: nasanightlaunch@example.com:0.6.20100314
FF - prefs.js..extensions.enabledItems: {5b35cb30-16b4-11de-8c30-0800200c9a66}:3.6.19.02.10
FF - prefs.js..extensions.enabledItems: {e7348bc0-16f6-11de-8c30-0800200c9a66}:3.6.19.02.10
FF - prefs.js..keyword.URL: "http://toolbar.ask.com/toolbarv/askRedirect?o=10607&gct=&gc=1&q="
FF - prefs.js..browser.startup.homepage: "http://mp3rocket.toolbaroptions.com/?tmp=toolbar_mp3rocket_homepage&prt=mp3rockettb04ff&v=15"


FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2010/07/18 16:30:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\ClickPotatoLite@ClickPotatoLite.com: C:\Program Files\ClickPotatoLite\bin\10.0.523.0\firefox\extensions
FF - HKLM\software\mozilla\Firefox\extensions\\widgetruntime@surfsecret.com: C:\Program Files\Panda Security\Panda ID Protect\Firefox [2010/11/04 09:15:44 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/01 21:39:25 | 000,000,000 | ---D | M]

[2008/11/10 10:19:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Extensions
[2010/07/27 14:19:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions
[2010/03/18 10:33:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2010/02/13 17:24:25 | 000,000,000 | ---D | M] (All-in-One Sidebar) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{097d3191-e6fa-4728-9826-b533d755359d}
[2009/08/26 18:24:33 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/08/06 09:02:24 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}(2)
[2010/03/18 10:33:04 | 000,000,000 | ---D | M] (Orange Fox) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{5b35cb30-16b4-11de-8c30-0800200c9a66}
[2010/03/18 10:33:58 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/02/13 17:24:28 | 000,000,000 | ---D | M] (Fire.fm) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3}
[2009/04/04 11:51:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{71C54606-83ED-4ea6-9315-1AAB29466D33}
[2009/04/04 11:56:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{9bc51d13-3849-4541-a69c-da418934ca05}
[2009/08/05 22:28:01 | 000,000,000 | ---D | M] (TorrentReactor.Net Toolbar) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{b23920f4-4c2f-412b-9450-1d7028d5454e}
[2010/02/13 17:24:09 | 000,000,000 | ---D | M] (Green Fox) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{d122ad80-ff45-11dd-87af-0800200c9a66}
[2010/02/13 17:24:29 | 000,000,000 | ---D | M] (Tiny Menu) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{d33c2f7c-b1e6-4d46-ab0e-be1f6d05c904}
[2010/02/13 17:24:08 | 000,000,000 | ---D | M] (AvantGarde Skylight) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{d62e0de0-401b-11dd-ae16-0800200c9a66}
[2008/12/24 10:56:44 | 000,000,000 | ---D | M] (Peer2Peer-EN Toolbar) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{da21bd13-ca22-42e3-a071-98f08f1ca1e7}
[2010/03/18 10:33:05 | 000,000,000 | ---D | M] (Pink Fox) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{e7348bc0-16f6-11de-8c30-0800200c9a66}
[2009/05/20 09:18:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2009/09/03 08:50:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\anycolor.pavlos256@gmail.com
[2009/08/05 22:28:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\ChrominFrame@zero.fire
[2010/03/18 10:33:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\foxmarks@kei.com
[2010/03/18 10:33:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\nasanightlaunch@example.com
[2010/03/18 10:33:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\personas@christopher.beard
[2009/04/24 19:40:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\xmpp4moz@hyperstruct.net
[2009/03/17 22:06:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\extensions\xmppdev@hyperstruct.net
[2008/11/28 19:53:51 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\searchplugins\ask.xml
[2010/02/13 13:01:06 | 000,002,163 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\searchplugins\bing.xml
[2008/11/13 11:30:14 | 000,000,886 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\searchplugins\conduit.xml
[2008/12/04 19:11:20 | 000,002,166 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Mozilla\Firefox\Profiles\d8supia6.default\searchplugins\torrentbox.xml
[2009/10/04 11:04:36 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/02/08 19:48:19 | 000,508,672 | ---- | M] (White Sky, Inc.) -- C:\Program Files\Mozilla Firefox\components\IdVault.XPCOM.dll

O1 HOSTS File: ([2010/04/27 21:38:43 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll File not found
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {784D8FBC-4165-4D88-90FB-62907ACDD045} - No CLSID value found.
O2 - BHO: (CDelHotkeys Object) - {78875F5C-A685-4405-8DC5-D48DC65452B0} - C:\Program Files\Delicious Add-on for Internet Explorer\DeliciousExtension.dll (Yahoo!)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Download Energy Toolbar) - {ad708c09-d51b-45b3-9d28-4eba2681febf} - C:\Program Files\Download_Energy\tbDow1.dll File not found
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll ()
O2 - BHO: (Shareware.Pro-EN Toolbar) - {bc3abe80-8ccd-4093-955d-a087dda18266} - C:\Program Files\Shareware.Pro-EN\tbSha0.dll File not found
O2 - BHO: (no name) - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - No CLSID value found.
O2 - BHO: (no name) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - No CLSID value found.
O2 - BHO: (Shareware.Pro-EN Toolbar) - {da21bd13-ca22-42e3-a071-98f08f1ca1e7} - C:\Program Files\Peer2Peer-EN\tbPee1.dll (Conduit Ltd.)
O2 - BHO: (no name) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - No CLSID value found.
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\YTSingleInstance.dll File not found
O3 - HKLM\..\Toolbar: (no name) - {1D1901C3-F72A-46f3-9DBB-0AAA0DEEF6DF} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Delicious Toolbar) - {61D1C847-DF80-423A-8C6D-DC03B97E6EBE} - C:\Program Files\Delicious Add-on for Internet Explorer\DeliciousExtension.dll (Yahoo!)
O3 - HKLM\..\Toolbar: (no name) - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Download Energy Toolbar) - {ad708c09-d51b-45b3-9d28-4eba2681febf} - C:\Program Files\Download_Energy\tbDow1.dll File not found
O3 - HKLM\..\Toolbar: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll ()
O3 - HKLM\..\Toolbar: (Shareware.Pro-EN Toolbar) - {bc3abe80-8ccd-4093-955d-a087dda18266} - C:\Program Files\Shareware.Pro-EN\tbSha0.dll File not found
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (Shareware.Pro-EN Toolbar) - {da21bd13-ca22-42e3-a071-98f08f1ca1e7} - C:\Program Files\Peer2Peer-EN\tbPee1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Delicious Toolbar) - {61D1C847-DF80-423A-8C6D-DC03B97E6EBE} - C:\Program Files\Delicious Add-on for Internet Explorer\DeliciousExtension.dll (Yahoo!)
O3 - HKCU\..\Toolbar\WebBrowser: (Download Energy Toolbar) - {AD708C09-D51B-45B3-9D28-4EBA2681FEBF} - C:\Program Files\Download_Energy\tbDow1.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Shareware.Pro-EN Toolbar) - {BC3ABE80-8CCD-4093-955D-A087DDA18266} - C:\Program Files\Shareware.Pro-EN\tbSha0.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Shareware.Pro-EN Toolbar) - {DA21BD13-CA22-42E3-A071-98F08F1CA1E7} - C:\Program Files\Peer2Peer-EN\tbPee1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [ClickPotatoLiteSA] C:\Program Files\ClickPotatoLite\bin\10.0.523.0\ClickPotatoLiteSA.exe File not found
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [MaxMenuMgr] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe (Seagate LLC)
O4 - HKLM..\Run: [Panda Security Toolbar Antiphishing] C:\Documents and Settings\All Users.WINDOWS\Application Data\Panda Security Toolbar Antiphishing\panda2_0dn.exe (Visicom Media Inc.)
O4 - HKLM..\Run: [PSUNMain] C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [SoundMan] C:\windows\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKLM..\Run: [UserFaultCheck] File not found
O4 - HKCU..\Run: [Desktop Secretary] C:\Program Files\Spotmau WinCare 2008\sub\Desktop_Secretary\Desktop_Secretary.exe (SpotMau Software Company)
O4 - HKCU..\Run: [ErrorRepairPro] C:\Program Files\Error Repair Professional\autostart.exe File not found
O4 - HKCU..\Run: [LGBLiveUpdate] C:\windows\System32\lgbpd.exe File not found
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\PROGRA~1\Yahoo!\Messenger\YahooMessenger.exe File not found
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [Uninstall Adobe Download Manager] File not found
O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\ID Vault.lnk = C:\Program Files\ID Vault\IDVault.exe File not found
O4 - Startup: C:\Documents and Settings\Doris E. Aubichon\Start Menu\Programs\Startup\CNET TechTracker.lnk = C:\Documents and Settings\Doris E. Aubichon\Application Data\CBS Interactive\CNET TechTracker\TechTracker.exe ()
O4 - Startup: C:\Documents and Settings\Doris E. Aubichon\Start Menu\Programs\Startup\PowerReg Scheduler.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O9 - Extra Button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll File not found
O9 - Extra Button: Delicious - {2C887991-08F0-11DC-A9B2-0012F0B227DD} - C:\Program Files\Delicious Add-on for Internet Explorer\DeliciousExtension.dll (Yahoo!)
O9 - Extra Button: Bookmarks - {2C887992-08F0-11DC-A9B2-0012F0B227DD} - C:\Program Files\Delicious Add-on for Internet Explorer\DeliciousExtension.dll (Yahoo!)
O9 - Extra Button: Tag - {2C887993-08F0-11DC-A9B2-0012F0B227DD} - C:\Program Files\Delicious Add-on for Internet Explorer\DeliciousExtension.dll (Yahoo!)
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\windows\bdoscandel.exe File not found
O9 - Extra Button: ClickPotato - {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} - C:\Program Files\ClickPotatoLite\bin\10.0.523.0\ClickPotatoLiteSABHO.dll File not found
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Reg Error: Key error.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dll (Installation Support)
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} http://dl.tvunetworks.com/TVUAx.cab (CTVUAxCtrl Object)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab (MSN Photo Upload Tool)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab (Reg Error: Key error.)
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} http://www.nick.com/common/groove/gx/GrooveAX27.cab (Groove Control)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} https://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_en_dl.cab (IWinAmpActiveX Class)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.16.1.254
O18 - Protocol\Handler\intu-qt2008 {05E53CE9-66C8-4a9e-A99F-FDB7A8E7B596} - Reg Error: Key error. File not found
O18 - Protocol\Handler\intu-qt2009 {03947252-2355-4e9b-B446-8CCC75C43370} - C:\Program Files\QuickTax 2009\ic2009pp.dll (Intuit Canada, a general partnership/une société en nom collectif.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop WallPaper: C:\Documents and Settings\Doris E. Aubichon\Application Data\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Doris E. Aubichon\Application Data\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/08/18 21:26:51 | 000,000,067 | ---- | M] () - F:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/11/04 14:20:44 | 000,000,000 | ---D | C] -- C:\Program Files\NOS
[2010/11/04 14:20:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\NOS
[2010/11/04 14:17:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sun
[2010/11/04 14:16:57 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\System32\deployJava1.dll
[2010/11/04 14:16:57 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\System32\javaws.exe
[2010/11/04 14:16:57 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\System32\javaw.exe
[2010/11/04 14:16:57 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\System32\java.exe
[2010/11/04 09:16:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Panda Security
[2010/11/04 09:15:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\SurfSecret Privacy Suite
[2010/11/04 09:15:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doris E. Aubichon\Local Settings\Application Data\panda2_0dn
[2010/11/04 09:15:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Panda Security Toolbar Antiphishing
[2010/11/04 09:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\pandasecuritytb
[2010/11/04 09:14:01 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2010/11/04 09:14:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Panda Security
[2010/11/03 11:36:29 | 000,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\windows\System32\drivers\mbam.sys
[2010/11/03 11:36:27 | 000,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\windows\System32\drivers\mbamswissarmy.sys
[2010/11/03 11:36:25 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/10/26 10:25:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doris E. Aubichon\Local Settings\Application Data\MicroVision Applications
[2010/10/26 10:06:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\ElevatedDiagnostics
[2010/10/25 21:09:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Sonic
[2010/10/25 21:08:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic
[2010/10/25 21:08:33 | 000,086,064 | ---- | C] (Sonic Solutions) -- C:\windows\System32\drivers\drvmcdb.sys
[2010/10/25 21:08:33 | 000,040,448 | ---- | C] (Sonic Solutions) -- C:\windows\System32\drivers\drvnddm.sys
[2010/10/25 21:08:32 | 000,098,352 | ---- | C] (Sonic Solutions) -- C:\windows\dla.exe
[2010/10/25 21:08:32 | 000,061,492 | ---- | C] (Sonic Solutions) -- C:\windows\System32\tfswapi.dll
[2010/10/25 21:08:32 | 000,023,219 | ---- | C] (Sonic Solutions) -- C:\windows\System32\drivers\ssrtln.sys
[2010/10/25 21:08:32 | 000,005,621 | ---- | C] (Sonic Solutions) -- C:\windows\System32\drivers\sscdbhk5.sys
[2010/10/25 21:08:30 | 000,000,000 | ---D | C] -- C:\windows\System32\dla
[2010/10/25 21:00:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SureThing Shared
[2010/10/25 21:00:05 | 000,000,000 | ---D | C] -- C:\Program Files\Sonic
[2010/10/25 19:40:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2010/10/25 19:40:23 | 000,185,944 | ---- | C] (RealNetworks, Inc.) -- C:\windows\System32\rmoc3260.dll
[2010/10/25 19:40:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\windows\System32\pndx5016.dll
[2010/10/25 19:40:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\windows\System32\pndx5032.dll
[2010/10/25 19:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2010/10/25 19:36:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Real
[2010/10/24 21:56:43 | 000,000,000 | ---D | C] -- C:\Program Files\Raptr
[2010/10/24 21:56:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Raptr
[2010/10/14 18:38:19 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\mfc40u.dll
[2010/10/14 18:37:49 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\comctl32.dll
[2010/10/12 18:11:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ptpusb.dll
[2010/10/12 18:11:27 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ptpusd.dll
[2008/10/17 20:59:38 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Doris E. Aubichon\Application Data\pcouffin.sys
[2 C:\windows\System32\dllcache\*.tmp files -> C:\windows\System32\dllcache\*.tmp -> ]
[10 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/11/04 14:46:00 | 000,001,030 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1390067357-839522115-1003UA.job
[2010/11/04 14:33:43 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader 9.lnk
[2010/11/04 14:21:36 | 000,012,718 | ---- | M] () -- C:\windows\System32\wpa.dbl
[2010/11/04 13:59:00 | 000,000,280 | ---- | M] () -- C:\windows\tasks\Check Updates for Windows Live Toolbar.job
[2010/11/04 13:30:35 | 003,902,849 | R--- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Desktop\ComboFix.exe
[2010/11/04 13:10:01 | 000,000,448 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{B77D7B5C-A5F0-4B1A-A3B5-4A1B37398C80}.job
[2010/11/04 11:46:00 | 000,000,978 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1390067357-839522115-1003Core.job
[2010/11/04 10:46:54 | 000,001,041 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\vso_ts_preview.xml
[2010/11/04 09:14:42 | 000,000,264 | ---- | M] () -- C:\windows\System32\PSUNCpl.dat
[2010/11/04 09:00:59 | 000,094,208 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/11/04 08:41:48 | 067,157,883 | ---- | M] () -- C:\windows\System32\drivers\Avg\incavi.avm
[2010/11/04 08:26:57 | 000,002,048 | --S- | M] () -- C:\windows\bootstat.dat
[2010/11/04 08:26:55 | 000,149,200 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2010/11/03 16:39:18 | 000,063,393 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\My Documents\cports.zip
[2010/11/03 11:36:30 | 000,000,714 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/10/30 18:32:49 | 000,001,863 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Seagate Manager.lnk
[2010/10/25 21:08:33 | 000,000,880 | ---- | M] () -- C:\windows\wininit.ini
[2010/10/25 21:00:09 | 000,001,706 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Microsoft\Internet Explorer\Quick Launch\RecordNow! Deluxe.lnk
[2010/10/25 19:51:19 | 000,531,192 | ---- | M] (Sonic Solutions) -- C:\windows\System32\pxdrv.dll
[2010/10/25 19:47:31 | 000,000,049 | ---- | M] () -- C:\windows\cdplayer.ini
[2010/10/25 19:40:23 | 000,185,944 | ---- | M] (RealNetworks, Inc.) -- C:\windows\System32\rmoc3260.dll
[2010/10/25 19:40:07 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\windows\System32\pndx5016.dll
[2010/10/25 19:40:07 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\windows\System32\pndx5032.dll
[2010/10/25 19:40:03 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\windows\System32\pncrt.dll
[2010/10/24 21:51:15 | 000,001,505 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2010/10/24 21:51:15 | 000,001,505 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Vuze.lnk
[2010/10/22 15:54:44 | 000,002,383 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Desktop\Google Chrome.lnk
[2010/10/22 15:54:44 | 000,002,361 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/10/21 21:12:02 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\Desktop\Shortcut to SUPERAntiSpyware.exe.lnk
[2010/10/21 14:57:00 | 000,000,284 | ---- | M] () -- C:\windows\tasks\AppleSoftwareUpdate.job
[2010/10/21 11:17:16 | 000,062,464 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\My Documents\Darryl Resume.doc
[2010/10/17 16:33:37 | 000,083,456 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\My Documents\Calvins Resume2.doc
[2010/10/17 16:32:00 | 000,083,456 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\My Documents\Calvins Resume.doc
[2010/10/14 21:10:24 | 000,001,393 | ---- | M] () -- C:\windows\imsins.BAK
[2010/10/12 17:18:53 | 000,020,480 | ---- | M] () -- C:\Documents and Settings\Doris E. Aubichon\My Documents\GOD HAS TAKEN AN ANGEL HOME lyrics.doc
[2 C:\windows\System32\dllcache\*.tmp files -> C:\windows\System32\dllcache\*.tmp -> ]
[10 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/11/04 09:14:42 | 000,000,264 | ---- | C] () -- C:\windows\System32\PSUNCpl.dat
[2010/11/03 16:39:16 | 000,063,393 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\My Documents\cports.zip
[2010/11/03 11:36:30 | 000,000,714 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/10/30 18:32:49 | 000,001,863 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Seagate Manager.lnk
[2010/10/25 21:00:28 | 000,001,706 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Microsoft\Internet Explorer\Quick Launch\RecordNow! Deluxe.lnk
[2010/10/25 19:42:16 | 000,000,049 | ---- | C] () -- C:\windows\cdplayer.ini
[2010/10/21 21:12:02 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Desktop\Shortcut to SUPERAntiSpyware.exe.lnk
[2010/10/21 11:17:16 | 000,062,464 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\My Documents\Darryl Resume.doc
[2010/10/17 16:33:37 | 000,083,456 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\My Documents\Calvins Resume2.doc
[2010/10/12 17:18:53 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\My Documents\GOD HAS TAKEN AN ANGEL HOME lyrics.doc
[2010/08/20 08:45:16 | 000,098,816 | ---- | C] () -- C:\windows\System32\FGWVB32.DLL
[2010/04/09 19:17:18 | 000,000,031 | ---- | C] () -- C:\windows\QUICKEN.INI
[2010/04/06 21:00:06 | 000,001,793 | ---- | C] () -- C:\windows\System32\fxsperf.ini
[2010/04/06 15:44:02 | 000,000,640 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Hewlett-PackardHP Photosmart 2570 series1263757518_UI.log
[2010/04/06 15:44:02 | 000,000,221 | ---- | C] () -- C:\windows\NCLogConfig.ini
[2010/04/06 15:44:02 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Hewlett-PackardHP Photosmart 2570 series1263757518_PROTOCOL.log
[2010/04/06 15:44:02 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Hewlett-PackardHP Photosmart 2570 series1263757518_API.log
[2010/03/31 18:25:12 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\scheduler.exe
[2010/03/31 18:25:10 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\FileDownloader.exe
[2010/03/20 15:30:58 | 000,003,088 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\PatchUpdate_InstantShareJPG.log
[2010/03/20 15:30:58 | 000,000,214 | ---- | C] () -- C:\windows\HP_InstantSHareJPG.ini
[2010/03/20 15:30:29 | 000,007,896 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\PatchUpdate_IZClosingDiscError.log
[2010/03/20 15:30:29 | 000,000,217 | ---- | C] () -- C:\windows\HP_IZClosingDiscErrorPatch.ini
[2010/03/13 10:59:28 | 000,000,362 | ---- | C] () -- C:\windows\hpntwksetup.ini
[2010/01/15 19:22:11 | 000,098,086 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\PatchUpdate_HP_CounterReport_Update_HPSU.log
[2010/01/15 19:22:11 | 000,000,227 | ---- | C] () -- C:\windows\HP_CounterReport_Update_HPSU.ini
[2010/01/15 19:22:00 | 000,004,517 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\HPSU_48BitScanUpdate.log
[2010/01/15 19:22:00 | 000,000,214 | ---- | C] () -- C:\windows\HP_48BitScanUpdatePatch.ini
[2009/11/15 21:09:32 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Local Settings\Application Data\xobni_installer_updater.log
[2009/11/12 14:39:17 | 000,361,899 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\Update_HP_RedboxHprblog_HPSU.log
[2009/11/12 14:39:17 | 000,000,221 | ---- | C] () -- C:\windows\HP_RedboxHprblog_HPSU.ini
[2009/11/11 19:39:32 | 000,000,000 | ---- | C] () -- C:\windows\hpqEmlSz.INI
[2009/11/11 11:27:06 | 000,000,141 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Local Settings\Application Data\fusioncache.dat
[2009/11/10 20:59:11 | 000,077,824 | R--- | C] () -- C:\windows\System32\hpzids01.dll
[2009/09/23 12:42:31 | 000,000,029 | ---- | C] () -- C:\windows\Irremote.ini
[2009/09/17 08:01:50 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\xobni_install.log
[2009/07/29 10:05:38 | 000,000,376 | ---- | C] () -- C:\windows\ODBC.INI
[2009/07/02 09:05:36 | 000,168,448 | ---- | C] () -- C:\windows\System32\unrar.dll
[2009/07/02 09:05:36 | 000,000,038 | ---- | C] () -- C:\windows\avisplitter.ini
[2009/07/02 09:05:34 | 000,881,664 | ---- | C] () -- C:\windows\System32\xvidcore.dll
[2009/07/02 09:05:34 | 000,205,824 | ---- | C] () -- C:\windows\System32\xvidvfw.dll
[2009/07/02 09:05:33 | 003,596,288 | ---- | C] () -- C:\windows\System32\qt-dx331.dll
[2009/07/02 09:05:32 | 000,085,504 | ---- | C] () -- C:\windows\System32\ff_vfw.dll
[2009/02/16 17:31:31 | 000,000,000 | ---- | C] () -- C:\windows\HPMProp.INI
[2009/01/19 19:12:05 | 000,162,304 | ---- | C] () -- C:\windows\System32\ztvunrar36.dll
[2009/01/19 19:12:05 | 000,077,312 | ---- | C] () -- C:\windows\System32\ztvunace26.dll
[2008/11/08 20:40:52 | 000,000,028 | ---- | C] () -- C:\windows\v2d.INI
[2008/10/19 17:36:13 | 000,000,880 | ---- | C] () -- C:\windows\wininit.ini
[2008/10/17 20:59:55 | 000,000,055 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\pcouffin.log
[2008/10/17 20:59:38 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\pcouffin.cat
[2008/10/17 20:59:38 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\pcouffin.inf
[2008/10/17 20:56:53 | 000,001,041 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\vso_ts_preview.xml
[2008/10/09 12:01:12 | 000,000,606 | ---- | C] () -- C:\windows\Uninstall Manager.INI
[2008/10/01 07:42:14 | 000,000,332 | ---- | C] () -- C:\windows\hpbvspst.ini
[2008/10/01 07:42:12 | 000,001,121 | ---- | C] () -- C:\windows\hpbvnstp.ini
[2008/09/30 20:21:35 | 000,139,264 | R--- | C] () -- C:\windows\System32\IDEproperty.dll
[2008/09/29 21:33:58 | 000,094,208 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/09/29 12:16:44 | 000,033,794 | ---- | C] () -- C:\windows\System32\llretli.dll
[2008/09/29 12:16:44 | 000,027,650 | ---- | C] () -- C:\windows\System32\sthhreg.dll
[2008/09/27 22:36:41 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\Doris E. Aubichon\Application Data\default.pls
[2008/09/22 20:20:47 | 000,147,456 | ---- | C] () -- C:\windows\System32\RtlCPAPI.dll
[2008/09/22 20:06:32 | 000,026,913 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\hpzinstall.log
[2008/09/21 19:24:42 | 000,008,152 | ---- | C] () -- C:\windows\hplj1010.ini
[2008/09/21 05:07:39 | 000,004,161 | ---- | C] () -- C:\windows\ODBCINST.INI
[2008/07/15 07:27:56 | 000,000,008 | RHS- | C] () -- C:\windows\neoqaz2.dll
[2008/05/26 13:53:42 | 000,087,824 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2008/03/04 18:52:34 | 000,286,720 | ---- | C] () -- C:\windows\System32\libcurl.dll
[2007/10/31 09:39:54 | 000,059,904 | ---- | C] () -- C:\windows\System32\zlib1.dll
[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- C:\windows\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- C:\windows\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- C:\windows\System32\gthrctr.ini
[2007/05/17 13:58:10 | 000,143,360 | ---- | C] () -- C:\windows\System32\libexpatw.dll
[2006/10/02 09:50:46 | 000,045,056 | ---- | C] () -- C:\windows\System32\xcon.dll
[2006/07/05 13:57:59 | 000,028,672 | ---- | C] () -- C:\windows\System32\lgbTrace.dll
[2005/02/03 09:46:29 | 000,229,376 | ---- | C] () -- C:\windows\System32\sdl.dll
[2004/04/09 03:15:50 | 000,000,000 | ---- | C] () -- C:\windows\System32\px.ini
[2003/02/19 02:26:28 | 000,028,672 | ---- | C] () -- C:\windows\System32\cmirmdrv.dll
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\windows\System32\OUTLPERF.INI
[2002/10/15 14:46:26 | 000,196,608 | ---- | C] () -- C:\windows\System32\hpbvnstp.dll
[2001/07/31 11:17:12 | 000,094,274 | ---- | C] () -- C:\windows\System32\HPBHEALR.DLL
[2001/07/06 15:30:00 | 000,003,399 | ---- | C] () -- C:\windows\System32\hptcpmon.ini
[2000/02/08 02:05:36 | 000,110,080 | R--- | C] () -- C:\windows\System32\W32MKRC.DLL
[2000/02/08 02:05:34 | 000,038,576 | ---- | C] () -- C:\windows\System32\NWLOCALE.DLL

========== Alternate Data Streams ==========

@Alternate Data Stream - 8 bytes -> C:\WINDOWS:
@Alternate Data Stream - 176 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:EEFF768F
@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:8B4B9596
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:A02025CE
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:88A44CC1
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:E9FAC3AB
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:5080697C
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:D1B5B4F1
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:554C6431
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:EC855C73
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:DFC5A2B2

< End of report >

descriptionMotherboard fan slows down, speeds up, slows down, stops and computer restarts. EmptyRe: Motherboard fan slows down, speeds up, slows down, stops and computer restarts.6th November 2010, 3:15 pm

more_horiz
Hi,

Welcome to GeekPolice.net!

Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):


    :OTL
    O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll File not found
    O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll File not found
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    O2 - BHO: (no name) - {784D8FBC-4165-4D88-90FB-62907ACDD045} - No CLSID value found.
    O2 - BHO: (Download Energy Toolbar) - {ad708c09-d51b-45b3-9d28-4eba2681febf} - C:\Program Files\Download_Energy\tbDow1.dll File not found
    O2 - BHO: (Shareware.Pro-EN Toolbar) - {bc3abe80-8ccd-4093-955d-a087dda18266} - C:\Program Files\Shareware.Pro-EN\tbSha0.dll File not found
    O2 - BHO: (no name) - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - No CLSID value found.
    O2 - BHO: (no name) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - No CLSID value found.
    O2 - BHO: (no name) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - No CLSID value found.
    O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\YTSingleInstance.dll File not found
    O3 - HKLM\..\Toolbar: (no name) - {1D1901C3-F72A-46f3-9DBB-0AAA0DEEF6DF} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (Download Energy Toolbar) - {ad708c09-d51b-45b3-9d28-4eba2681febf} - C:\Program Files\Download_Energy\tbDow1.dll File not found
    O3 - HKLM\..\Toolbar: (Shareware.Pro-EN Toolbar) - {bc3abe80-8ccd-4093-955d-a087dda18266} - C:\Program Files\Shareware.Pro-EN\tbSha0.dll File not found
    O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll File not found
    O3 - HKCU\..\Toolbar\WebBrowser: (Download Energy Toolbar) - {AD708C09-D51B-45B3-9D28-4EBA2681FEBF} - C:\Program Files\Download_Energy\tbDow1.dll File not found
    O3 - HKCU\..\Toolbar\WebBrowser: (Shareware.Pro-EN Toolbar) - {BC3ABE80-8CCD-4093-955D-A087DDA18266} - C:\Program Files\Shareware.Pro-EN\tbSha0.dll File not found
    O4 - HKLM..\Run: [ClickPotatoLiteSA] C:\Program Files\ClickPotatoLite\bin\10.0.523.0\ClickPotatoLiteSA.exe File not found
    O4 - HKLM..\Run: [KernelFaultCheck] File not found
    O4 - HKLM..\Run: [UserFaultCheck] File not found
    O4 - HKCU..\Run: [ErrorRepairPro] C:\Program Files\Error Repair Professional\autostart.exe File not found
    O4 - HKCU..\Run: [LGBLiveUpdate] C:\windows\System32\lgbpd.exe File not found
    O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\PROGRA~1\Yahoo!\Messenger\YahooMessenger.exe File not found
    O4 - HKLM..\RunOnce: [Uninstall Adobe Download Manager] File not found
    O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\ID Vault.lnk = C:\Program Files\ID Vault\IDVault.exe File not found
    O9 - Extra Button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll File not found
    O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\windows\bdoscandel.exe File not found
    O9 - Extra Button: ClickPotato - {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} - C:\Program Files\ClickPotatoLite\bin\10.0.523.0\ClickPotatoLiteSABHO.dll File not found

    :commands
    [emptytemp]
    [resethosts]
    [purity]



  • Return to OTL.exe, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

=============

Please download ComboFix Motherboard fan slows down, speeds up, slows down, stops and computer restarts. Combofix from BleepingComputer.com

Alternate link: GeeksToGo.com

Alternate link: Forospyware.com

Rename ComboFix.exe to commy.exe before you save it to your Desktop
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found here
  • Click Start>Run then copy paste the following command into the Run box & click OK "%userprofile%\desktop\commy.exe" /stepdel
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console

Motherboard fan slows down, speeds up, slows down, stops and computer restarts. Query_RC
Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
Motherboard fan slows down, speeds up, slows down, stops and computer restarts. RC_successful

  • Click on Yes, to continue scanning for malware.
  • When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.

............................................................................................

I'm livin' life in the fast lane.
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum