"Bad image" dialog box error for multiple EXEs >>

Should the items found by ESET be deleted/cleaned, or are those false positives?

OTL restore point made and log below. Working on clean-up now. The problems noted in my first post have recurred, though I do notice occasional "pauses" of a few seconds when using Firefox during which the comp is unresponsive. Not sure if that's a separate issue or just due to my older hardware.

All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Tim
->Temp folder emptied: 376825 bytes
->Temporary Internet Files folder emptied: 77895 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 99311804 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 1925 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 26922 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 203 bytes

Total Files Cleaned = 95.00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: Tim
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

Restore points cleared and new OTL Restore Point set!

OTL by OldTimer - Version 3.2.17.3 log created on 11302010_195149

So far, so good. Just the pauses I mentioned.

Currently installing some of the software you recommended and changing passwords (which was overdue, anyway).

It's similar to what another user described in another thread. In essence, when browsing the web, I notice that occasionally, the machine will become unresponsive for a few seconds at a time. I can move the mouse, but a click is not registered until the "pause" passes. When playing video (YouTube, for example), the playback will stop and then resume during this pause. I cannot recall immediately if audio stops too. In essence, the machine seems "sluggish" for those times. When running a stress test program for my video card (to check temps), I noticed that the temps would drop for a few seconds and then increase again, as if the program was not taxing the system for those few seconds, much like the "pauses" noticed.

I'm not sure if this is truly malware or just a result of improper resource management. I've never found any virus/malware in my scans beyond what you helped me fix.


Thanks for all the help so far! As for the quarantined programs, can they be cleaned or should I nuke them (no big loss if they're gone forever).

Bad files nuked.

As for the "pausing" issue, I notice it to a lesser extend when washing Flash video in FF (safe mode). With FF in normal mode, the issue is worse, but resolves with a restart of FF. I notice the issue also occurs when viewing Flash video in Chrome. I wonder if it's related to all the overhead from Flash.

I currently have the up-to-date version of Flash (verified with Secunia PSI).

Not yet. I've been getting everything else ship-shape. I need the computer for work and an upcoming professional exam and so don't want to risk the same issues I had before with inoperative networking.

What I can do is back up the system drive first and then try applying SP3. That way, I can roll back easily if there are problems.

SP3 installed and wireless connective issues returned, as dreaded.

Windows "View Wireless Networks" shows no available connections. Machine will only connect upon initial startup or after stopping and restarting the Wireless Zero Configuration service. Power cycling the adapter or running NetworkStumbler breaks the connection. Windows repair utility fails to fix the connection.

Prepped to return to SP2 if this issue cannot be resolved.

EDIT: Wireless issue resolved by disabling some vendor-provided services.

^ Thank you very much for your help! I will monitor the Flash issue a bit more and post in the Windows section if it persists.

Now I am recieving some additional errors

From the Event Viewer log

The COM+ Event System detected a bad return code during its internal processing. HRESULT was 80029C4A from line 4068 of d:\comxp_sp3\com\com1x\src\events\tier1\agent.cpp. Please contact Microsoft Product Support Services to report this error.

The COM+ Event System detected a bad return code during its internal processing. HRESULT was 80070005 from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp. Please contact Microsoft Product Support Services to report this error.

Plus a number of these

Volume Shadow Copy Service error: Unexpected error GetVolumeNameForVolumeMountPointW( \\?\Volume{7872a072-3aa5-11dd-8138-0020e0cc5a86}\, ...). hr = 0x80070003.

I had an issue with Explore.exe crashing, some services giving a "memory could not be 'written'" error, and finally a "mmc.exe failed to initialize" error that prompted me to reboot. No "Bad Image" errors noted.

Want to rule out that this is viral before pursuing another path (possibly a DLL permissions error). Last Avira scan was clean, and ESET is currently running.

Thanks!

I checked because I was having some errors similar to those in my very first post in this thread. No "bad image" error, but the "memory can not be 'written'" error. ESET finds nothing, so my thought is that it's not virus-related.

SP3 continues to hum away without incident, FYI.