Solved [Reopened per member] DCOM and userenv errors

Status
Not open for further replies.
G

Gouge

Posts: 128   +0
I originally posted this on the "BSOD, Freezing, Re-starting" forum, but they suggested that I should post it here instead.

I keep getting a DCOM error which re-boots my Windows XP SP3 PC. I didn't appear to have a problem prior to upgrading to SP3. (I have installed all updates since upgrading to SP3 BTW)

I've looked on the Event Viewer (System) and get this message:

"DCOM got error "The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. " attempting to start the service WSearch with arguments "" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp."

The PC was idle at the time.

I did have a problem with windows search - it wouldn't start and the Search Companion was missing. I reinstalled the Search Companion, which now works, but Windows Search still doesn't start.

Also getting a "userenv" error message on Applications:

"Windows saved user MARTINPC\Owner registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.

This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account."

Can anyone suggest how I find out what is causing the problems and how to fix them, please?
 
I checked (and closed) the thread for same problem in the Windows BSOD Forum.
Not to worry- we should be able to handle this problem.

The most simple remedy for the Userenv Warning or Error is to reboot the computer. If you put the system in Standby
Event Type: Warning (or Error)
Event Source: Userenv
Event Category: None
Event ID: 1517 (1535 for Error I think)
Date: 3/15/2012
Time: 8:11:35 PM
User: NT AUTHORITY\SYSTEM
Computer: LAPTOP2
Description:
Windows saved user LAPTOP2\your user name registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.
---------------------------------------
I get this frequently. Just keep in mind that you have to reboot occasionally to free up the memory.
=========================================
On the other hand, a DCOM error can have consequences.
What you didn't realize is that WSerch is adware- not Windows Live Search. So there is malware for this which which is trying to reach the internet server from within you system.

We need to find the adware and remove it: First, click on Start> Run> type in msconfig> Enter> Click on Selective Startup> Startup tab> Scroll down the left column for items that are checked> Look for WSearrch or PigSearch and uncheck it.

If you cannot ID the Command column to see what a process belongs to, hold the left mouse down on the frame above the process on the line dividing the Command and Location> Move to the right to expand.

When through, click on Apply> OK.
Note: On the first reboot after using msconfig to make a change you will get a nag message that you can ignore. Check the box that say 'don't show this message again'> STAY in Selective Startup and close.
---------------------------------------------
FYI: This program delivers advertising content to the user. It is usually annoying but harmless, unless it is combined with spyware or trackware.

The WSearch adware family appears to be related to the Zhongsou Chinese Search Engine. While active and connected to the Internet, WSearch adware may display additional targeted pop-up advertisements and communicate with Zhongsou servers.
===============================
Now we'll go look for the malware:

Please follow these steps: Preliminary Virus and Malware Removal.

NOTE: If you already have any of the scanning programs on the computer, please remove them and download the versions in these links.

When you have finished, leave the logs for review in your next reply .
NOTE: Logs must be pasted in the replies. Attached logs will not be reviewed.
===================================
Please leave the logs in your next reply.
==========================================
My Guidelines: please read and follow:
  • Be patient. Malware cleaning takes time. I am also working with other members while I am helping you.
  • Read my instructions carefully. If you don't understand or have a problem, ask me. Follow the order of the tasks I give you. Order is crucial in cleaning process.
  • If you have questions, or if a program doesn't work, stop and tell me about it. Don't try to get around it yourself.
  • File sharing programs should be uninstalled or disabled during the cleaning process..
  • Observe these:
    [o] Don't follow directions given to someone else
    [o] Don't use any other cleaning programs or scans while I'm helping you.
    [o] Don't use a Registry cleaner or make any changes in the Registry.
    [o] Don't download and install new programs- except those I give you.
Threads are closed after 5 days if there is no reply.
 
I followed your instructions to eliminate the DCOM problem but couldn't find any trace of either of the two files mentioned!! (Wsearch or Pigsearch)

There was a Windows Search entry, which I assume is a valid entry.

While it might be harmless, the DCOM error re-boots my pc everytime, which is annoying.

Broni helped me clean my pc a few weeks ago. I followed his instructions following the cleanup to keep my pc clean, so I'll be concerned if it has become infected again.

Anyway, I'll follow the instructions just in case!!
 
Here is the MBAM Log:

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.21.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Owner :: MARTINPC [administrator]

21/03/2012 16:50:25
mbam-log-2012-03-21 (16-50-25).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 238162
Time elapsed: 5 minute(s), 28 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 
GMER Log

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-03-21 17:25:03
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 WDC_WD2500AAKS-22VSA0 rev.01.01B01
Running: bqf496jn.exe; Driver: C:\DOCUME~1\Owner\LOCALS~1\Temp\pgdcypow.sys


---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET)
AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdir.sys (ESET Antivirus Network Redirector/ESET)

---- EOF - GMER 1.0.15 ----
 
Attach Log

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 08/12/2008 17:04:49
System Uptime: 21/03/2012 16:44:32 (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | P5QL-ASUS-SE
Processor: Intel Pentium III Xeon processor | LGA775 | 3010/333mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 233 GiB total, 113.698 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 466 GiB total, 251.19 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Belkin Wireless G Plus MIMO USB Network Adapter
Device ID: USB\VID_050D&PID_905B\5&476FB6F&0&3
Manufacturer: Belkin Components
Name: Belkin Wireless G Plus MIMO USB Network Adapter
PNP Device ID: USB\VID_050D&PID_905B\5&476FB6F&0&3
Service: RT73
.
==== System Restore Points ===================
.
RP90: 17/03/2012 09:05:34 - System Checkpoint
RP91: 18/03/2012 21:04:47 - System Checkpoint
RP92: 19/03/2012 12:53:00 - Installed E-MU PatchMix DSP
RP93: 20/03/2012 09:33:47 - Revo Uninstaller's restore point - E-muPatchMix DSP
RP94: 20/03/2012 09:34:05 - Removed E-MU PatchMix DSP
RP95: 20/03/2012 09:35:16 - Revo Uninstaller's restore point - Digital Audio System
RP96: 20/03/2012 09:35:37 - Removed Digital Audio System
RP97: 20/03/2012 09:42:58 - Installed Digital Audio System
RP98: 20/03/2012 10:17:15 - Installed Digital Audio System
RP99: 21/03/2012 12:42:42 - System Checkpoint
.
==== Installed Programs ======================
.
7-Zip 4.57
Administrative Templates for Windows XP
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.2)
Adobe Shockwave Player 11.6
Adobe® Photoshop® Album Starter Edition 3.0.1
AmpliTube LE
Apache HTTP Server 2.2.22
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Assorted Styles Volume 2
Assorted Styles Volume 3
Assorted Styles Volume 4
ASUSUpdate
Audio Track Editor
AVS Audio Converter version 6.1
AVS Audio Editor version 5.2
AVS Audio Recorder version 3.9
AVS Audio Tools version 4.4
AVS Cover Editor 1.3.1.96 (AVS4YOU)
AVS Disc Creator version 3.5
AVS DVD Authoring
AVS DVD Copy 4.1.2.283
AVS DVDMenu Editor 1.2.1.19
AVS Media Player 3.1
AVS Photo Editor
AVS Screen Capture version 2.0.1
AVS System Info
AVS TV Box 1.5.1
AVS TV Recorder 2.1.2
AVS Update Manager 1.0
AVS Video Converter 6
AVS Video Editor 6
AVS Video Recorder 2.4
AVS Video ReMaker 3.1.2.102
AVS Video Tools 5.6
AVS YouTube Uploader version 2.1
AVS4YOU Software Navigator 1.4
Belkin Wireless G Plus MIMO USB Network Adapter
Bonjour
Cakewalk VST Adapter 4
Calculator Powertoy for Windows XP
Canon Easy-PhotoPrint EX
Canon MOV Decoder
Canon MOV Encoder
Canon MovieEdit Task for ZoomBrowser EX
Canon MP Drivers 6.0
Canon MP Navigator 1.0
Canon ScanGearStarter
Canon Utilities Digital Photo Professional 3.8
Canon Utilities Easy-PhotoPrint
Canon Utilities EOS Utility
Canon Utilities Original Data Security Tools
Canon Utilities PhotoStitch
Canon Utilities Picture Style Editor
Canon Utilities WFT Utility
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
CCleaner
CD-LabelPrint
Compatibility Pack for the 2007 Office system
Content Transfer
CopyReport4 4.0
Core FTP LE
Core FTP LE 2.1
CoyoteWT 1.0
Critical Update for Windows Media Player 11 (KB959772)
Digital Audio System
DreamStation DXi2
Driver Detective
DVD-Cloner V8.10 Build 1005
E-MU USB-MIDI Windows Drivers
E-MU Xboard
Easy-WebPrint
ESET NOD32 Antivirus
ForteDXi 1.6
Foxit PDF Editor
Foxit PDF IFilter
Foxit Reader 5.1
GEAR 32bit Driver Installer
GIMP 2.6.11
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
Google Updater
Guitar Chord Dictionary
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB971455)
Hotfix for Windows XP (KB976002-v5)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
Image Resizer Powertoy for Windows XP
IrfanView (remove only)
iriver plus (remove only)
iriver plus 3 (remove only)
iTunes
JAMMER Pro 6 Musicians & Grooves Volumes 1-4
JAMMER Professional 6 v6.0.3.1
Java Auto Updater
Java(TM) 6 Update 30
Java(TM) 7 Update 3
JMicron JMB36X Driver
LADSPA_plugins-win-0.4.15
Live 8.2.5
Live 8.2.8
Malwarebytes Anti-Malware version 1.60.1.1000
Maxtor Manager
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft IntelliPoint 8.2
Microsoft IntelliType Pro 7.1
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office File Validation Add-In
Microsoft Office FrontPage 2003
Microsoft Office Outlook Connector
Microsoft Office Professional Edition 2003
Microsoft Office Project Standard 2003
Microsoft Office Visio Professional 2003
Microsoft RAW Image Thumbnailer and Viewer for Windows XP Version 1.0 (Build 50)
Microsoft Silverlight
Microsoft SQL Server Compact 3.5 SP2 ENU
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MobileMe Control Panel
Mozilla Firefox 11.0 (x86 en-GB)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
MySQL Tools for 5.0
Nero Suite
Neuratron PhotoScore Lite
Nikon Message Center
Nikon View 6
NTI Shadow
NVIDIA Control Panel 296.10
NVIDIA Graphics Driver 296.10
NVIDIA Install Application
NVIDIA nView 136.18
NVIDIA nView Desktop Manager
NVIDIA Update 1.7.11
NVIDIA Update Components
NWZ-E440 WALKMAN Guide
OmniFormat
OmniPage SE 2.0
OpenOffice.org 3.3
PC Connectivity Solution
Pdf995
PdfEdit995
PG Music DirectX Plugins 2.0.0.0
Photo Story 3 for Windows
PhotoEdit995
PHOTOfunSTUDIO 6.0
Piano Chord Dictionary
PictureProject
PowerTracks Pro Audio 2011 (Build 1)
Presto! PageManager 6.12
Proteus VX
Proteus X LE
QuickTime
Ralink Wireless LAN
Rapport
RealDrums Sets 1-3
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
REALTEK GbE & FE Ethernet PCI-E NIC Driver
RealUpgrade 1.1
Revo Uninstaller 1.93
Samsung New PC Studio
SAMSUNG USB Driver for Mobile Phones
SamsungConnectivityCableDriver
SeaTools for Windows
Secunia PSI (2.0.0.4003)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Internet Explorer 7 (KB976325)
Security Update for Windows Internet Explorer 7 (KB978207)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 9 (KB936782)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Security Updater
Sibelius 5
Sibelius Scorch (ActiveX Only)
Sibelius Scorch (all browsers)
Sibelius Scorch (Firefox, Opera, Netscape only)
Sibelius Sounds Essentials
Sibelius Sounds Essentials Update
Signature995
SONAR LE
Spybot - Search & Destroy
Steinberg Cubase LE
SUPERAntiSpyware
swMSM
System Requirements Lab
T-RackS EQ
TomTom HOME 2.8.2.2264
TomTom HOME Visual Studio Merge Modules
TuneUp Utilities 2012
TuneUp Utilities Language Pack (en-GB)
ubCore
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 7 (KB976749)
Update for Windows Internet Explorer 7 (KB980182)
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows Internet Explorer 8 (KB2632503)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2492386)
Update for Windows XP (KB2641690)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
USB TV Device Driver
VC80CRTRedist - 8.0.50727.4053
Virtual Sound Canvas 3.2
Virtual Sound Canvas DXi
VisualSVN Server 2.5.3
VST Bridge 1.1
WebFldrs XP
Windows 7 Upgrade Advisor
Windows Backup Utility
Windows Imaging Component
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Lite 2.4.0
Windows Media Player 11
Windows Presentation Foundation
Windows Search 4.0
Windows Support Tools
Windows XP Service Pack 3
WinFast Multimedia Driver Installation
WinZip Self-Extractor
XAMPP 1.6.2
XML Paper Specification Shared Components Pack 1.0
Yahoo! Install Manager
.
==== Event Viewer Messages From Past Week ========
.
21/03/2012 17:21:22, error: atapi [9] - The device, \Device\Ide\IdePort0, did not respond within the timeout period.
17/03/2012 14:59:37, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
17/03/2012 14:58:37, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service gusvc with arguments "" in order to run the server: {89DAE4CD-9F17-4980-902A-99BA84A8F5C8}
17/03/2012 14:12:16, error: NetBT [4321] - The name "WORKGROUP :1d" could not be registered on the Interface with IP address 192.168.2.2. The machine with the IP address 192.168.2.5 did not allow the name to be claimed by this machine.
17/03/2012 13:10:15, error: MRxSmb [8003] - The master browser has received a server announcement from the computer LAPTOP that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C5DC1197-4859-4323-A9. The master browser is stopping or an election is being forced.
17/03/2012 08:16:33, error: RemoteAccess [20106] - Unable to add the interface {C1A7B19C-F009-4B13-907E-052924634400} with the Router Manager for the IP protocol. The following error occurred: Cannot complete this function.
17/03/2012 08:15:50, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the NVSvc service.
16/03/2012 22:18:43, error: Service Control Manager [7034] - The TuneUp Utilities Service service terminated unexpectedly. It has done this 1 time(s).
16/03/2012 22:18:43, error: Service Control Manager [7034] - The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).
16/03/2012 22:18:43, error: Service Control Manager [7034] - The NVIDIA Driver Helper Service service terminated unexpectedly. It has done this 1 time(s).
16/03/2012 22:18:43, error: Service Control Manager [7034] - The Maxtor Service service terminated unexpectedly. It has done this 1 time(s).
16/03/2012 22:18:42, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
16/03/2012 22:18:42, error: Service Control Manager [7034] - The Bonjour Service service terminated unexpectedly. It has done this 1 time(s).
16/03/2012 22:18:42, error: Service Control Manager [7031] - The SAS Core Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.
16/03/2012 16:03:42, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service gupdatem with arguments "/comsvc" in order to run the server: {E225E692-4B47-4777-9BED-4FD7FE257F0E}
15/03/2012 07:48:56, error: Service Control Manager [7024] - The Routing and Remote Access service terminated with service-specific error 1003 (0x3EB).
15/03/2012 07:48:48, error: RemoteAccess [20103] - Unable to load C:\WINDOWS\System32\ipxrtmgr.dll.
15/03/2012 07:48:48, error: DCOM [10005] - DCOM got error "%1055" attempting to start the service winmgmt with arguments "" in order to run the server: {8BC3F05E-D86B-11D0-A075-00C04FB68820}
15/03/2012 07:48:48, error: DCOM [10005] - DCOM got error "%1055" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
15/03/2012 07:48:47, error: IPXRouterManager [20133] - IPX Routing failed to start because IPX forwarder driver could not be loaded.
.
==== End Of File ===========================
 
DDS Log

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.3.0
Run by Owner at 17:34:03 on 2012-03-21
Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.2047.1226 [GMT 0:00]
.
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\USBStorage\USBDetector.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Belkin\F5D9050\Belkinwcui.exe
C:\WINDOWS\CTHELPER.EXE
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\RALINK\Common\RaUI.exe
C:\Program Files\Secunia\PSI\psi_tray.exe
C:\Program Files\Creative Professional\Digital Audio System\E-MU PatchMix DSP\EmuPatchMixDSP.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Maxtor\Sync\SyncServices.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Secunia\PSI\PSIA.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Owner\Desktop\bqf496jn.exe
C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpHost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.talktalk.co.uk/
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {3049c3e9-b461-4bc5-8870-4c09146192ca} - RealPlayer Download and Record Plugin for Internet Explorer
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7227.1100\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: Easy-WebPrint: {327c2873-e90d-4c37-aa9d-10ac9baba46c} - c:\program files\canon\easy-webprint\Toolband.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
uRun: [SetDefaultMIDI] MIDIDef.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe"
mRun: [itype] "c:\program files\microsoft intellitype pro\itype.exe"
mRun: [USBDetector] c:\usbstorage\USBDetector.exe
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [F5D9050] c:\program files\belkin\f5d9050\Belkinwcui.exe
mRun: [CTHelper] CTHELPER.EXE
mRun: [CTxfiHlp] CTXFIHLP.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ralink~1.lnk - c:\program files\ralink\common\RaUI.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\secuni~1.lnk - c:\program files\secunia\psi\psi_tray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab
DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} - hxxp://www.musicnotes.com/download/mnviewer.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} - hxxp://magnet.2020.net/virtualplanner/Core/Player/2020PlayerAX_Win32.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1228814578312
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1230199576593
DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab
DPF: {8C922C73-FFFA-45A3-B2C2-BC1E30074267} - hxxp://www.sony.co.uk/bravia/RegistrationAgent.cab
DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - hxxp://www.sibelius.com/download/software/win/ActiveXPlugin.cab
DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} - hxxp://office.microsoft.com/officeupdate/content/opuc4.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\owner\application data\mozilla\firefox\profiles\nbnx8z1a.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.talktalk.co.uk/
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\canon\easy-photoprint ex\NPEZFFPI.DLL
FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\google updater\2.4.2432.1652\npCIDetect14.dll
FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.0.61118.0\npctrlui.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.switch.threshold - 600000
.
============= SERVICES / DRIVERS ===============
.
R0 RapportKELL;RapportKELL;c:\windows\system32\drivers\RapportKELL.sys [2012-3-11 56208]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-11-16 118104]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2009-11-16 103112]
R1 RapportCerberus_34302;RapportCerberus_34302;c:\documents and settings\all users\application data\trusteer\rapport\store\exts\rapportcerberus\34302\RapportCerberus32_34302.sys [2011-12-15 228208]
R1 RapportEI;RapportEI;c:\program files\trusteer\rapport\bin\RapportEI.sys [2012-3-11 71440]
R1 RapportPG;RapportPG;c:\program files\trusteer\rapport\bin\RapportPG.sys [2012-3-11 164112]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2011-9-22 974944]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia update core\daemonu.exe [2012-2-21 2348352]
R2 RapportMgmtService;Rapport Management Service;c:\program files\trusteer\rapport\bin\RapportMgmtService.exe [2012-3-11 931640]
R2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\secunia\psi\psia.exe [2011-10-14 994360]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2012\TuneUpUtilitiesService32.exe [2012-2-9 1529152]
R2 ubsbm;Unibrain 1394 SBM Driver;c:\windows\system32\drivers\UBSBM.sys [2005-7-27 14080]
R2 ubumapi;Unibrain 1394 FireAPI Driver;c:\windows\system32\drivers\UBUMAPI.sys [2005-7-27 36352]
R2 VisualSVNServer;VisualSVN Server;c:\program files\visualsvn server\bin\VisualSVNServer.exe [2012-2-14 24424]
R3 BKNDIS5;BKNDIS5 NDIS Protocol Driver;c:\progra~1\belkin\f5d9050\BKNDIS5.SYS [2010-1-26 15872]
R3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2010-9-1 15544]
R3 RapportIaso;RapportIaso;c:\documents and settings\all users\application data\trusteer\rapport\store\exts\rapportms\28896\RapportIaso.sys [2011-8-7 21520]
R3 StreamSurge;StreamSurge Driver (miniport);c:\windows\system32\drivers\ss.sys [2010-1-26 19968]
R3 ubohci;Unibrain 1394 OHCI Driver;c:\windows\system32\drivers\ubohci.sys [2005-7-27 77056]
R3 vsc32;Virtual Sound Canvas 3.2;c:\windows\system32\drivers\vsc.sys [2012-3-14 951284]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 COMMONFX.SYS;COMMONFX.SYS;c:\windows\system32\drivers\COMMONFX.sys [2008-3-20 98328]
S3 COMMONFX;COMMONFX;c:\windows\system32\drivers\COMMONFX.sys [2008-3-20 98328]
S3 cpuz132;cpuz132;\??\c:\docume~1\owner\locals~1\temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\owner\locals~1\temp\cpuz132\cpuz132_x32.sys [?]
S3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\system32\drivers\CT20XUT.sys [2008-3-20 171032]
S3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.sys [2008-3-20 171032]
S3 CTAUDFX.SYS;CTAUDFX.SYS;c:\windows\system32\drivers\CTAUDFX.sys [2008-3-20 528920]
S3 CTAUDFX;CTAUDFX;c:\windows\system32\drivers\CTAUDFX.sys [2008-3-20 528920]
S3 CTEAPSFX.SYS;CTEAPSFX.SYS;c:\windows\system32\drivers\CTEAPSFX.sys [2008-3-20 163352]
S3 CTEAPSFX;CTEAPSFX;c:\windows\system32\drivers\CTEAPSFX.sys [2008-3-20 163352]
S3 CTEDSPFX.SYS;CTEDSPFX.SYS;c:\windows\system32\drivers\CTEDSPFX.sys [2008-3-20 259096]
S3 CTEDSPFX;CTEDSPFX;c:\windows\system32\drivers\CTEDSPFX.sys [2008-3-20 259096]
S3 CTEDSPIO.SYS;CTEDSPIO.SYS;c:\windows\system32\drivers\CTEDSPIO.sys [2008-3-20 134168]
S3 CTEDSPIO;CTEDSPIO;c:\windows\system32\drivers\CTEDSPIO.sys [2008-3-20 134168]
S3 CTEDSPSY.SYS;CTEDSPSY.SYS;c:\windows\system32\drivers\CTEDSPSY.sys [2008-3-20 309784]
S3 CTEDSPSY;CTEDSPSY;c:\windows\system32\drivers\CTEDSPSY.sys [2008-3-20 309784]
S3 CTERFXFX.SYS;CTERFXFX.SYS;c:\windows\system32\drivers\CTERFXFX.sys [2008-3-20 99352]
S3 CTERFXFX;CTERFXFX;c:\windows\system32\drivers\CTERFXFX.sys [2008-3-20 99352]
S3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\system32\drivers\CTEXFIFX.sys [2008-3-20 1324056]
S3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.sys [2008-3-20 1324056]
S3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\system32\drivers\CTHWIUT.sys [2008-3-20 72728]
S3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.sys [2008-3-20 72728]
S3 CTSBLFX.SYS;CTSBLFX.SYS;c:\windows\system32\drivers\CTSBLFX.sys [2008-3-20 534040]
S3 CTSBLFX;CTSBLFX;c:\windows\system32\drivers\CTSBLFX.sys [2008-3-20 534040]
S3 emuumidi;E-MU USB-MIDI Driver;c:\windows\system32\drivers\emuumidi.sys [2007-3-14 37120]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2009-9-4 36608]
S3 netr73;Belkin Wireless G Plus MIMO USB Network Adapter Driver for Vista;c:\windows\system32\drivers\netr73.sys [2006-9-28 247808]
S3 PortlUSB;PortlUSB;c:\windows\system32\drivers\H10USB.sys [2004-6-24 7552]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2010-10-17 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2010-10-17 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2010-10-17 123648]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2012\TuneUpUtilitiesDriver32.sys [2011-11-24 10064]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2006-2-28 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 Apache2.2;Apache2.2;c:\program files\apache software foundation\apache2.2\bin\httpd.exe [2012-1-28 20549]
S4 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2009-9-4 233472]
S4 gupdate1c99b6187578484;Google Update Service (gupdate1c99b6187578484);c:\program files\google\update\GoogleUpdate.exe [2009-3-2 133104]
S4 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2009-3-2 133104]
S4 TomTomHOMEService;TomTomHOMEService;c:\program files\tomtom home 2\TomTomHOMEService.exe [2011-4-22 92592]
.
=============== Created Last 30 ================
.
2012-03-21 16:42:21 709968 ----a-w- c:\windows\isRS-000.tmp
2012-03-21 15:04:27 -------- d-----w- c:\program files\Spybot - Search & Destroy
2012-03-21 15:04:27 -------- d-----w- c:\documents and settings\all users\application data\Spybot - Search & Destroy
2012-03-20 10:17:58 -------- d-----w- c:\documents and settings\owner\application data\EmuPatchMixDSP
2012-03-20 09:45:46 90112 ------w- c:\windows\Updreg.EXE
2012-03-20 09:43:38 10240 ----a-w- c:\windows\CTDCRES.DLL
2012-03-19 22:15:58 701386 -c--a-w- c:\windows\system32\dllcache\wdhaalba.sys
2012-03-19 22:14:59 28160 -c--a-w- c:\windows\system32\dllcache\umaxu40.dll
2012-03-19 22:13:58 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2012-03-19 22:12:58 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2012-03-19 22:11:58 157696 -c--a-w- c:\windows\system32\dllcache\sisv256.dll
2012-03-19 21:55:41 17280 -c--a-w- c:\windows\system32\dllcache\scr111.sys
2012-03-19 21:54:58 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2012-03-19 21:54:55 9216 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2012-03-19 21:54:53 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
2012-03-19 21:54:51 79104 -c--a-w- c:\windows\system32\dllcache\rocket.sys
2012-03-19 21:54:48 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
2012-03-19 21:54:46 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
2012-03-19 21:52:14 6016 -c--a-w- c:\windows\system32\dllcache\qic157.sys
2012-03-19 21:52:08 159232 -c--a-w- c:\windows\system32\dllcache\ptpusd.dll
2012-03-19 21:51:59 17664 -c--a-w- c:\windows\system32\dllcache\ppa3.sys
2012-03-19 21:51:57 8832 -c--a-w- c:\windows\system32\dllcache\powerfil.sys
2012-03-19 21:51:37 259328 -c--a-w- c:\windows\system32\dllcache\perm3dd.dll
2012-03-19 21:51:36 28032 -c--a-w- c:\windows\system32\dllcache\perm3.sys
2012-03-19 21:51:36 211584 -c--a-w- c:\windows\system32\dllcache\perm2dll.dll
2012-03-19 21:51:35 27904 -c--a-w- c:\windows\system32\dllcache\perm2.sys
2012-03-19 21:50:24 28672 -c--a-w- c:\windows\system32\dllcache\nscirda.sys
2012-03-19 21:49:32 49024 -c--a-w- c:\windows\system32\dllcache\mstape.sys
2012-03-19 21:49:23 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
2012-03-19 21:49:13 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
2012-03-19 21:48:51 26112 -c--a-w- c:\windows\system32\dllcache\memstpci.sys
2012-03-19 21:48:27 7040 -c--a-w- c:\windows\system32\dllcache\ltotape.sys
2012-03-19 21:48:12 34688 -c--a-w- c:\windows\system32\dllcache\lbrtfdc.sys
2012-03-19 21:48:04 253952 -c--a-w- c:\windows\system32\dllcache\kdsusd.dll
2012-03-19 21:48:03 48640 -c--a-w- c:\windows\system32\dllcache\kdsui.dll
2012-03-19 21:47:51 14592 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys
2012-03-19 21:47:44 6144 -c--a-w- c:\windows\system32\dllcache\kbd106.dll
2012-03-19 21:47:35 28160 -c--a-w- c:\windows\system32\dllcache\irmon.dll
2012-03-19 21:47:33 151552 -c--a-w- c:\windows\system32\dllcache\irftp.exe
2012-03-19 21:47:32 88192 -c--a-w- c:\windows\system32\dllcache\irda.sys
2012-03-19 21:47:25 5504 -c--a-w- c:\windows\system32\dllcache\intelide.sys
2012-03-19 21:46:46 702845 -c--a-w- c:\windows\system32\dllcache\i81xdnt5.dll
2012-03-19 21:46:43 18560 -c--a-w- c:\windows\system32\dllcache\i2omp.sys
2012-03-19 21:46:42 8576 -c--a-w- c:\windows\system32\dllcache\i2omgmt.sys
2012-03-19 21:45:40 20352 -c--a-w- c:\windows\system32\dllcache\hidbatt.sys
2012-03-19 21:45:36 28288 -c--a-w- c:\windows\system32\dllcache\grserial.sys
2012-03-19 21:45:31 59136 -c--a-w- c:\windows\system32\dllcache\gckernel.sys
2012-03-19 21:45:31 10624 -c--a-w- c:\windows\system32\dllcache\gameenum.sys
2012-03-19 21:43:40 206976 -c--a-w- c:\windows\system32\dllcache\dot4.sys
2012-03-19 21:43:36 8320 -c--a-w- c:\windows\system32\dllcache\dlttape.sys
2012-03-19 21:42:50 249856 -c--a-w- c:\windows\system32\dllcache\ctmasetp.dll
2012-03-19 21:42:40 10240 -c--a-w- c:\windows\system32\dllcache\compbatt.sys
2012-03-19 21:42:35 13952 -c--a-w- c:\windows\system32\dllcache\cmbatt.sys
2012-03-19 21:42:25 8192 -c--a-w- c:\windows\system32\dllcache\changer.sys
2012-03-19 21:42:15 121856 -c--a-w- c:\windows\system32\dllcache\camext30.dll
2012-03-19 21:41:38 14208 -c--a-w- c:\windows\system32\dllcache\battc.sys
2012-03-19 21:41:31 13696 -c--a-w- c:\windows\system32\dllcache\avcstrm.sys
2012-03-19 21:41:30 38912 -c--a-w- c:\windows\system32\dllcache\avc.sys
2012-03-19 21:39:24 48128 -c--a-w- c:\windows\system32\dllcache\61883.sys
2012-03-19 21:39:24 12288 -c--a-w- c:\windows\system32\dllcache\4mmdat.sys
2012-03-18 10:05:32 592824 ----a-w- c:\program files\mozilla firefox\gkmedias.dll
2012-03-18 10:05:32 44472 ----a-w- c:\program files\mozilla firefox\mozglue.dll
2012-03-14 19:37:13 204800 ----a-w- c:\windows\system32\vsc32cnf.cpl
2012-03-14 19:36:51 951284 ----a-w- c:\windows\system32\drivers\vsc.sys
2012-03-14 19:36:51 118876 ----a-w- c:\windows\system32\vscapi.dll
2012-03-14 19:36:26 -------- d-----w- c:\windows\_ISTMP1.DIR
2012-03-13 12:59:20 7062 ----a-w- c:\windows\system32\audiopid.vxd
2012-03-11 13:48:50 56208 ----a-w- c:\windows\system32\drivers\RapportKELL.sys
2012-03-06 16:00:42 -------- d-----w- c:\program files\VisualSVN Server
2012-03-06 08:14:27 -------- d-----w- c:\program files\CCleaner
2012-03-05 17:38:31 -------- d-----w- c:\program files\AVAST Software
2012-03-05 17:38:31 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2012-03-05 16:27:55 -------- d-----w- c:\documents and settings\owner\application data\IObit
2012-03-05 16:27:50 -------- d-----w- c:\program files\IObit
2012-02-28 16:30:19 -------- d--h--w- c:\windows\PIF
2012-02-28 16:06:28 628088 ----a-w- C:\WindowsXP-KB971455-x86-ENU.exe
2012-02-27 09:40:27 -------- d-----w- c:\program files\Support Tools
2012-02-26 17:48:16 11137024 ----a-w- c:\windows\system32\libmfxsw32.dll
2012-02-26 12:58:38 -------- d-----w- c:\program files\Microsoft Windows 7 Upgrade Advisor
2012-02-21 22:34:03 -------- d-----w- c:\documents and settings\owner\local settings\application data\Sun
.
==================== Find3M ====================
.
2012-03-20 14:56:49 6524 ----a-w- c:\windows\P32I.BIN
2012-03-13 22:40:09 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-03-13 21:42:37 293992 ----a-w- c:\windows\system32\nvdrsdb1.bin
2012-03-13 21:42:37 1 ----a-w- c:\windows\system32\nvdrssel.bin
2012-03-13 21:42:34 293992 ----a-w- c:\windows\system32\nvdrsdb0.bin
2012-02-29 23:58:00 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-29 23:58:00 65536 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-29 23:58:00 5918720 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-29 23:58:00 4309760 ----a-w- c:\windows\system32\nv4_disp.dll
2012-02-29 23:58:00 2522944 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-29 23:58:00 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-29 23:58:00 2291712 ----a-w- c:\windows\system32\nvapi.dll
2012-02-29 23:58:00 18624512 ----a-w- c:\windows\system32\nvoglnt.dll
2012-02-29 23:58:00 17534976 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-29 23:58:00 13417632 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2012-02-29 23:58:00 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-29 20:30:31 54272 ----a-w- c:\windows\system32\nvwddi.dll
2012-02-29 20:30:24 15494464 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-29 20:30:24 143680 ----a-w- c:\windows\system32\nvcolor.exe
2012-02-29 20:30:23 164160 ----a-w- c:\windows\system32\nvsvc32.exe
2012-02-29 20:30:23 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-27 15:32:14 141312 ----a-w- c:\windows\system32\javacpl.cpl
2012-02-27 15:32:13 637848 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-02-27 15:32:13 567696 ----a-w- c:\windows\system32\deployJava1.dll
2012-02-11 01:17:18 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-02-11 01:17:18 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-02-09 13:01:24 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2012-02-09 13:01:16 28992 ----a-w- c:\windows\system32\uxtuneup.dll
2012-02-05 11:14:04 414 ----a-w- c:\windows\AeDebugSave.reg
2012-02-03 09:22:18 1860096 ------w- c:\windows\system32\win32k.sys
2012-01-11 19:06:47 3072 ------w- c:\windows\system32\iacenc.dll
2012-01-09 16:20:25 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
.
============= FINISH: 17:34:41.62 ===============
 
Spybot fix

By the way, before I read your response, I downloaded and ran Spybot and found some malware. Here's the log, in case it might help.


--- Report generated: 2012-03-21 15:29 ---

W3i.IQ5.fraud: [SBI $467B1F92] Settings (Registry key, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\Freeze.com

SpywareDetector: [SBI $0D8F8637] Text file (File, fixed)
C:\MaxSignature.txt
Properties.size=0
Properties.md5=D41D8CD98F00B204E9800998ECF8427E

WebTrends live: Tracking cookie (Internet Explorer: Owner) (Cookie, fixed)


DoubleClick: Tracking cookie (Internet Explorer: Owner) (Cookie, fixed)


Right Media: Tracking cookie (Internet Explorer: Owner) (Cookie, fixed)



--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---

2009-01-26 blindman.exe (1.0.0.8)
2009-01-26 SDFiles.exe (1.6.1.7)
2009-01-26 SDMain.exe (1.0.0.6)
2009-01-26 SDShred.exe (1.0.2.5)
2009-01-26 SDUpdate.exe (1.6.0.12)
2009-01-26 SpybotSD.exe (1.6.2.46)
2009-03-05 TeaTimer.exe (1.6.6.32)
2012-03-21 unins000.exe (51.49.0.0)
2009-01-26 Update.exe (1.6.0.7)
2009-11-04 advcheck.dll (1.6.5.20)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2009-01-26 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2009-01-26 Tools.dll (2.1.6.10)
2009-01-16 UninsSrv.dll (1.0.0.0)
2012-01-16 Includes\Adware.sbi (*)
2012-03-20 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2010-12-14 Includes\Dialer.sbi (*)
2011-11-29 Includes\DialerC.sbi (*)
2012-01-31 Includes\HeavyDuty.sbi (*)
2012-03-20 Includes\Hijackers.sbi (*)
2011-10-04 Includes\HijackersC.sbi (*)
2010-09-15 Includes\iPhone.sbi (*)
2012-03-13 Includes\Keyloggers.sbi (*)
2012-03-13 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2012-01-10 Includes\Malware.sbi (*)
2012-03-20 Includes\MalwareC.sbi (*)
2011-02-24 Includes\PUPS.sbi (*)
2012-02-28 Includes\PUPSC.sbi (*)
2010-01-25 Includes\Revision.sbi (*)
2011-02-24 Includes\Security.sbi (*)
2011-12-13 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2012-01-17 Includes\Spyware.sbi (*)
2012-02-28 Includes\SpywareC.sbi (*)
2010-03-08 Includes\Tracks.uti
2011-09-28 Includes\Trojans.sbi (*)
2012-03-21 Includes\TrojansC-02.sbi (*)
2012-03-15 Includes\TrojansC-03.sbi (*)
2012-03-21 Includes\TrojansC-04.sbi (*)
2012-03-14 Includes\TrojansC-05.sbi (*)
2012-03-21 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll
 
Sorry for delay- I've been sick.

Regarding this error:
"DCOM got error "The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. " attempting to start the service WSearch with arguments "" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Please go back to the Event Viewer and get the additional information in the Error, such as below:
Log Name: System
Source: Microsoft-Windows-DistributedCOM
Date: 26.11.2009 21:19:08
Event ID: 10005
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: toshiba
Description:
DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
----------------------------------
1. According to the information I find, WSearch is a process starting with the Vista OS (Provides content indexing and property caching for file, email and other content (via extensibility APIs) and later. You have Windows XP SP3

2. The similar process in Windows XP is the Indexing Service. Try this:
Right click on Start> Explore> Right click on Local Drive(C)> Properties> Uncheck both "Compress Drives to save disk space" AND "Allow Indexing Service to index this disk for faster file searching:> then click Apply> OK

Click on Start> Run> type in services.msc> Enter> scroll down to and double click on Indexing Service> Set Startup Type to Manual> Stop the Service.

3. There are also errors from the Routing and Remote Access Service. This Service should be disabled.
This Service Allows computers to dial in to the local computer through a modem (or other devices) to access the local network using a standard or VPN connection. Unless you require this functionality, disable it for security reasons.
Start> Run> type services.msc> Double click on Routing and Remote Access> Change Startup type to Disabled> Stop the Service
Note: click on this Service first to make sure you have the right Service. There are other Services named 'Remote xxx'. Those are NOT the ones to change.

4, The following file is running and on the Desktop. I cant identify it. If you know what it is, please tell me. If you do not, do a right click> Properties and see if there is any information:
C:\Documents and Settings\Owner\Desktop\bqf496jn.exe
Do not do a double click on left click. It is an executable file and we don't want to start it.

5.
I did have a problem with windows search - it wouldn't start and the Search Companion was missing. I reinstalled the Search Companion, which now works, but Windows Search still doesn't start.
Click to expand...

Please describe this more clearly. For instance, when I click on Start and the screen opens, the Search feature is listed (bottom right on my Start menu.) When I click on the word 'Search', it asks what I want to search for. My usual choice is "All Files and Folders."

What is happening to you that is different?
You do NOT need the Search Companion. If you go to the lower part of the Search screen and click on Change preferences then you have choices. I removed the Search Companion years ago and do not use any of the 'other' choices.
===========================
Reboot the computer when you have finished with the Services. Let me know if it makes any differences and explain the Search Problem, plus answer question about desktop file.
 
Full information from DCOM error as follows:

Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 21/03/2012
Time: 19:21:48
User: MARTINPC\Owner
Computer: MARTINPC
Description:
DCOM got error "The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. " attempting to start the service WSearch with arguments "" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

The file C:\Documents and Settings\Owner\Desktop\bqf496jn.exe was the random name given to GMER file.
 
Search Problem

Maybe it isn't a problem now.

When I click on Start and the screen opens, the Search feature is listed (bottom right on my Start menu.) When I click on the word 'Search', it asks what I want to search for. My usual choice is "All Files and Folders.

Previously, the screen was of a different layout. Using the search companion was an option when searching files and folders. However, when I upgraded to SP3, the search screen wouldn't work and all I got was an error message saying that search had not started and to go to the start menu to start it - which did not work either.

I downloaded and re-installed the search companion facility and that now works ok. I have stopped the animation, but left everything else as default.

I hope that this is enough detail.
 
I have had several DCOM events over the past few days, mainly WSearch errors, but other types as well. These are the System error reports (only one example although many instances of each):

Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 27/03/2012
Time: 08:15:29
User: MARTINPC\Owner
Computer: MARTINPC
Description:
DCOM got error "The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. " attempting to start the service WSearch with arguments "" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 27/03/2012
Time: 08:10:18
User: MARTINPC\Owner
Computer: MARTINPC
Description:
DCOM got error "The service database is locked. " attempting to start the service winmgmt with arguments "" in order to run the server:
{8BC3F05E-D86B-11D0-A075-00C04FB68820}


Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 27/03/2012
Time: 08:10:10
User: MARTINPC\Owner
Computer: MARTINPC
Description:
DCOM got error "The service database is locked. " attempting to start the service netman with arguments "" in order to run the server:
{BA126AE5-2166-11D1-B1D0-00805FC1270E}


Event Type: Error
Event Source: RemoteAccess
Event Category: None
Event ID: 20103
Date: 20/03/2012
Time: 13:44:03
User: N/A
Computer: MARTINPC
Description:
Unable to load C:\WINDOWS\System32\ipxrtmgr.dll.


Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 21/03/2012
Time: 10:51:08
User: MARTINPC\Owner
Computer: MARTINPC
Description:
DCOM got error "The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. " attempting to start the service gusvc with arguments "" in order to run the server:
{89DAE4CD-9F17-4980-902A-99BA84A8F5C8}

Event Type: Error
Event Source: DCOM
Event Category: None
Event ID: 10005
Date: 21/03/2012
Time: 10:51:08
User: MARTINPC\Owner
Computer: MARTINPC
Description:
DCOM got error "The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. " attempting to start the service gupdatem with arguments "/comsvc" in order to run the server:
{E225E692-4B47-4777-9BED-4FD7FE257F0E}
 
You had system problems and the same problem in your last thread:

1/13/2012> https://www.techspot.com/vb/topic176108.html
09/01/2012 09:21:15, error: RemoteAccess [20106] - Unable to add the interface {C1A7B19C-F009-4B13-907E-052924634400} with the Router Manager for the IP protocol. The following error occurred: Cannot complete this function.

3/17/2012> https://www.techspot.com/vb/showthread.php?p=1160940#post1160940
17/03/2012 08:16:33, error: RemoteAccess [20106] - Unable to add the interface {C1A7B19C-F009-4B13-907E-052924634400} with the Router Manager for the IP protocol. The following error occurred: Cannot complete this function.

You have multiple errors in both threads. I left some advice previously>

3. There are also errors from the Routing and Remote Access Service. This Service should be disabled.
This Service Allows computers to dial in to the local computer through a modem (or other devices) to access the local network using a standard or VPN connection. Unless you require this functionality, disable it for security reasons.
Start> Run> type services.msc> Double click on Routing and Remote Access> Change Startup type to Disabled> Stop the Service
Note: click on this Service first to make sure you have the right Service. There are other Services named 'Remote xxx'. Those are NOT the ones to change.
Click to expand...
==============================
Error: "The service database is locked". This can be caused if an attempt is made to stop/start or otherwise perform some service-related tasks when a server has just started and the systems still performs some of the startup functions in the background thus keeping the services
database locked. In this case just wait a couple of minutes for the system to finish its tasks. It could also be that a faulty service installation procedure "locked" the database and in this case a reboot may help.
From Event ID
service winmgmt
service netman
service gusvc
service gupdatem
--------------------------------
Unable to load C:\WINDOWS\System32\ipxrtmgr.dll.>> IPX ROUTER MANAGER
Routing and Remote Access Service :
Event Type: Error
Event Source: RemoteAccess
Event Category: None
Event ID: 20103
Date: 20/03/2012
Time: 13:44:03
User: N/A
Computer: MARTINPC
Description:
Unable to load C:\WINDOWS\System32\ipxrtmgr.dll.

IPX Router Manager (Ipxrtmgr.dll)
  • Obtains configuration information from the DIM.
  • Communicates IPX packet filtering configuration to the IPX filtering driver.
  • Communicates IPX routing configuration information to the IPX forwarder driver.
  • Maintains an interface database of all IPX routing interfaces.
  • Loads and communicates configuration information to IPX routing protocols (RIP for IPX, SAP for IPX).
  • Initiates demand-dial connections on behalf of routing protocols by communicating with the DIM.
===========================================
On the other hand, a DCOM error can have consequences.
What you didn't realize is that WSerch is adware- not Windows Live Search. So there is malware for this which which is trying to reach the internet server from within you system.
Click to expand...
But this is not what's causing these problems. It appears that 1. the system and Services are not set correctly-or- 2. the router has gone bad-or- 3. a compatibility problem-or- a combination of these.
============================================
I'd like to have a look at this please:
Please run the MGA Diagnostics tool
  • You will be prompted to either “Run” or “Save” the tool. Choose to “Run” the tool and follow the on-screen prompts.
  • You will receive an Internet Explorer-Security Warning dialog box for the Windows Genuine Advantage Diagnostic Tool>
  • You must choose to Run this tool when prompted.
  • Once you are presented with the Diagnostics tool choose Continue to run the diagnostic report.
  • If the RESOLVE button is available after running the diagnostics, please click RESOLVE to allow the diagnostic tool to attempt a repair.
  • After running the MGA Diagnostic tool, click on the Windows tab and then click on Copy
  • Please return to this thread and Paste the results here for review.
------------------------------------------
This tool will is to look on the computer itself, in the documentation you received with the computer or with your retail purchase of Windows to see if you have a Certificate of Authenticity (COA). If you have one, tell us about the COA. Tell us:

1. What edition of Windows XP is it for, Home, Pro, or Media Center, or another version of Windows?
2. Does it read "OEM Software" or "OEM Product" in black lettering?
3. Or, does it have the computer manufacturer's name in black lettering?
4. DO NOT post the Product Key.

NOTE: The data collected with the Genuine Diagnostics Tool does NOT contain any information that can personally identify you and can be fully reviewed, by you, before being posted.
 
Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->
Validation Status: Genuine
Validation Code: 0
Cached Validation Code: N/A
Windows Product ID: 76477-OEM-2143335-96982
Windows Product ID Type: 3
Windows License Type: OEM System Builder
Windows OS version: 5.1.2600.2.00010300.3.0.hom
ID: {0A6488EF-5989-450E-827A-50F24C4C2570}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: Registered, 1.9.9.1
Signed By: Microsoft
Product Name: N/A
Architecture: N/A
Build lab: N/A
TTS Error: N/A
Validation Diagnostic: 025D1FF3-230-1
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A
Version: N/A

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 100 Genuine
Microsoft Office FrontPage 2003 - 100 Genuine
Microsoft Office Project Standard 2003 - 100 Genuine
Microsoft Office Visio Professional 2003 - 100 Genuine
Microsoft Office Professional Edition 2003 - 100 Genuine
OGA Version: Registered, 1.6.28.0
Signed By: Microsoft
Office Diagnostics: 025D1FF3-230-1

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files\Internet Explorer\IEXPLORE.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{0A6488EF-5989-450E-827A-50F24C4C2570}</UGUID><Version>1.9.0027.0</Version><OS>5.1.2600.2.00010300.3.0.hom</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-YMGP6</PKey><PID>76477-OEM-2143335-96982</PID><PIDType>3</PIDType><SID>S-1-5-21-1220945662-1801674531-725345543</SID><SYSTEM><Manufacturer>System manufacturer</Manufacturer><Model>System Product Name</Model></SYSTEM><BIOS><Manufacturer>American Megatrends Inc.</Manufacturer><Version>0402 </Version><SMBIOSVersion major="2" minor="5"/><Date>20081009000000.000000+000</Date></BIOS><HWID>C6F5319F01842079</HWID><UserLCID>0809</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>GMT Standard Time(GMT+00:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM/><GANotification/></MachineData><Software><Office><Result>100</Result><Products><Product GUID="{91170409-6000-11D3-8CFE-0150048383C9}"><LegitResult>100</LegitResult><Name>Microsoft Office FrontPage 2003</Name><Ver>11</Ver><Val>795820638EA4DA2</Val><Hash>2xNUZYz58KRZse75nMaZi3wyeRY=</Hash><Pid>72079-721-0284644-55528</Pid><PidType>1</PidType></Product><Product GUID="{913A0409-6000-11D3-8CFE-0150048383C9}"><LegitResult>100</LegitResult><Name>Microsoft Office Project Standard 2003</Name><Ver>11</Ver><Val>B5FF3AD301DFDA2</Val><Hash>UrnEgPD5vQjOjCoYrEcxQx/0ixk=</Hash><Pid>72076-721-0391393-55943</Pid><PidType>1</PidType></Product><Product GUID="{91510409-6000-11D3-8CFE-0150048383C9}"><LegitResult>100</LegitResult><Name>Microsoft Office Visio Professional 2003</Name><Ver>11</Ver><Val>6BE8DF35E340DA2</Val><Hash>RZS9eTj+cfjfenXDIWb+VkjBHmE=</Hash><Pid>72085-721-0373195-55225</Pid><PidType>1</PidType></Product><Product GUID="{91E30409-6000-11D3-8CFE-0150048383C9}"><LegitResult>100</LegitResult><Name>Microsoft Office Professional Edition 2003</Name><Ver>11</Ver><Val>A5C16C52E6CC5A2</Val><Hash>9xsGoAbJ3UYDZloFOnYbs9Ejnec=</Hash><Pid>73931-721-8761544-57506</Pid><PidType>1</PidType></Product></Products><Applications><App Id="15" Version="11" Result="100"/><App Id="16" Version="11" Result="100"/><App Id="17" Version="11" Result="100"/><App Id="18" Version="11" Result="100"/><App Id="19" Version="11" Result="100"/><App Id="1A" Version="11" Result="100"/><App Id="1B" Version="11" Result="100"/><App Id="3A" Version="11" Result="100"/><App Id="44" Version="11" Result="100"/><App Id="51" Version="11" Result="100"/><App Id="A1" Version="11" Result="100"/></Applications></Office></Software></GenuineResults>

Licensing Data-->
N/A

Windows Activation Technologies-->
N/A

HWID Data-->
N/A

OEM Activation 1.0 Data-->
BIOS string matches: yes
Marker string from BIOS: 13920:ASUSTeK Computer Inc|14FB1:GENUINE C&C INC
Marker string from OEMBIOS.DAT: N/A, hr = 0x80004005

OEM Activation 2.0 Data-->
N/A

It is Windows Home Edition. OEM Software.
 
Gouge
I am curious about this:
Windows License Type: OEM System Builder
Click to expand...
Some of these type licenses don't require a Validation, but I'm not sure which one your system is.

What is the origin of this computer? Self-built? Gotten new from Asus? Gotten from a previous user?

I've gone back over all of the replies- it seem obvious that something either in SP3 or on your system conflicted with the update:

Did you check and follow these? (Bold blue are embedded links)==============================================
Be sure you get the correct download of SP3: You want this one.
http://technet.microsoft.com/en-us/windows/bb794714

There is another edition of this: Windows XP Service Pack 3 Network Installation Package for IT Professionals and Developers: You don't want this one.

A system needs to be prepared for a significant update like the SP. If you did not do everything suggested in the links or have updates to remove, do a System Restore back to the closest date right before you installed SP3. Reboot the system after. That will remove SP3. Then do the preparation as recommended.

Note: the earliest DCOM error in the log is 3/15/2012. So if it's an SP3 conflict causing the problem, the install date will be before that. You may have to check the Event Viewer again because the log has a set number of errors in past week, so it's limited.
 
I met all of the prerequisites before I installed SP3. I downloaded from the microsoft update site.

The pc was purchased from a supplier who specialise in setting up machines for audio production. It was then set up for me by a pc expert.

As part of the cleaning process earlier this year, I deleted all restore points as these had evidence of infections so cannot restore to a pre-SP3 state.

I will carry out your instructions from your message response.
 
The main problem is that the pc reboots when there is a DCOM error - not every time but reboots coincide with a DCOM error.

Here's the Malwarebytes log:

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.20.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Owner :: MARTINPC [administrator]

20/04/2012 19:23:15
mbam-log-2012-04-20 (19-23-15).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 246309
Time elapsed: 5 minute(s), 18 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
and the DDS log:

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.3.0
Run by Owner at 20:01:29 on 2012-04-20
Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.2047.1021 [GMT 1:00]
.
AV: ESET NOD32 Antivirus 5.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\USBStorage\USBDetector.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Belkin\F5D9050\Belkinwcui.exe
C:\WINDOWS\CTHELPER.EXE
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Roland\VSC32\vsc32cnf.exe
C:\Program Files\Roland\VSC32\vscvol.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Maxtor\Sync\SyncServices.exe
C:\Program Files\RALINK\Common\RaUI.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Secunia\PSI\psi_tray.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Creative Professional\Digital Audio System\E-MU PatchMix DSP\EmuPatchMixDSP.exe
C:\Program Files\Secunia\PSI\PSIA.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.talktalk.co.uk/
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {3049c3e9-b461-4bc5-8870-4c09146192ca} - RealPlayer Download and Record Plugin for Internet Explorer
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7227.1100\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: Easy-WebPrint: {327c2873-e90d-4c37-aa9d-10ac9baba46c} - c:\program files\canon\easy-webprint\Toolband.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
uRun: [SetDefaultMIDI] MIDIDef.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe"
mRun: [itype] "c:\program files\microsoft intellitype pro\itype.exe"
mRun: [USBDetector] c:\usbstorage\USBDetector.exe
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [F5D9050] c:\program files\belkin\f5d9050\Belkinwcui.exe
mRun: [CTHelper] CTHELPER.EXE
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [vsc32cnf.exe] c:\program files\roland\vsc32\vsc32cnf.exe
mRun: [vscvol.exe] c:\program files\roland\vsc32\vscvol.exe
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ralink~1.lnk - c:\program files\ralink\common\RaUI.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\secuni~1.lnk - c:\program files\secunia\psi\psi_tray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab
DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} - hxxp://www.musicnotes.com/download/mnviewer.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} - hxxp://magnet.2020.net/virtualplanner/Core/Player/2020PlayerAX_Win32.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1228814578312
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1230199576593
DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab
DPF: {8C922C73-FFFA-45A3-B2C2-BC1E30074267} - hxxp://www.sony.co.uk/bravia/RegistrationAgent.cab
DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - hxxp://www.sibelius.com/download/software/win/ActiveXPlugin.cab
DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} - hxxp://office.microsoft.com/officeupdate/content/opuc4.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
TCP: DhcpNameServer = 192.168.2.1
TCP: Interfaces\{C5DC1197-4859-4323-A944-9304C093F378} : DhcpNameServer = 192.168.2.1
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\owner\application data\mozilla\firefox\profiles\nbnx8z1a.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.talktalk.co.uk/
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\canon\easy-photoprint ex\NPEZFFPI.DLL
FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\google updater\2.4.2432.1652\npCIDetect14.dll
FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.0.61118.0\npctrlui.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_2_202_233.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.switch.threshold - 600000
.
============= SERVICES / DRIVERS ===============
.
R0 RapportKELL;RapportKELL;c:\windows\system32\drivers\RapportKELL.sys [2012-3-11 56208]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-11-16 118104]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2009-11-16 103112]
R1 RapportCerberus_34302;RapportCerberus_34302;c:\documents and settings\all users\application data\trusteer\rapport\store\exts\rapportcerberus\34302\RapportCerberus32_34302.sys [2011-12-15 228208]
R1 RapportEI;RapportEI;c:\program files\trusteer\rapport\bin\RapportEI.sys [2012-3-11 71440]
R1 RapportPG;RapportPG;c:\program files\trusteer\rapport\bin\RapportPG.sys [2012-3-11 164112]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-12 116608]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2011-9-22 974944]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia update core\daemonu.exe [2012-2-21 2348352]
R2 RapportMgmtService;Rapport Management Service;c:\program files\trusteer\rapport\bin\RapportMgmtService.exe [2012-3-11 931640]
R2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\secunia\psi\psia.exe [2011-10-14 994360]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2012\TuneUpUtilitiesService32.exe [2012-4-5 1529152]
R2 ubsbm;Unibrain 1394 SBM Driver;c:\windows\system32\drivers\UBSBM.sys [2005-7-27 14080]
R2 ubumapi;Unibrain 1394 FireAPI Driver;c:\windows\system32\drivers\UBUMAPI.sys [2005-7-27 36352]
R2 VisualSVNServer;VisualSVN Server;c:\program files\visualsvn server\bin\VisualSVNServer.exe [2012-2-14 24424]
R3 BKNDIS5;BKNDIS5 NDIS Protocol Driver;c:\progra~1\belkin\f5d9050\BKNDIS5.SYS [2010-1-26 15872]
R3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2010-9-1 15544]
R3 RapportIaso;RapportIaso;c:\documents and settings\all users\application data\trusteer\rapport\store\exts\rapportms\28896\RapportIaso.sys [2011-8-7 21520]
R3 StreamSurge;StreamSurge Driver (miniport);c:\windows\system32\drivers\ss.sys [2010-1-26 19968]
R3 ubohci;Unibrain 1394 OHCI Driver;c:\windows\system32\drivers\ubohci.sys [2005-7-27 77056]
R3 vsc32;Virtual Sound Canvas 3.2;c:\windows\system32\drivers\vsc.sys [2012-3-14 951284]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-5 253088]
S3 COMMONFX.SYS;COMMONFX.SYS;c:\windows\system32\drivers\COMMONFX.sys [2008-3-20 98328]
S3 COMMONFX;COMMONFX;c:\windows\system32\drivers\COMMONFX.sys [2008-3-20 98328]
S3 cpuz132;cpuz132;\??\c:\docume~1\owner\locals~1\temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\owner\locals~1\temp\cpuz132\cpuz132_x32.sys [?]
S3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\system32\drivers\CT20XUT.sys [2008-3-20 171032]
S3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.sys [2008-3-20 171032]
S3 CTAUDFX.SYS;CTAUDFX.SYS;c:\windows\system32\drivers\CTAUDFX.sys [2008-3-20 528920]
S3 CTAUDFX;CTAUDFX;c:\windows\system32\drivers\CTAUDFX.sys [2008-3-20 528920]
S3 CTEAPSFX.SYS;CTEAPSFX.SYS;c:\windows\system32\drivers\CTEAPSFX.sys [2008-3-20 163352]
S3 CTEAPSFX;CTEAPSFX;c:\windows\system32\drivers\CTEAPSFX.sys [2008-3-20 163352]
S3 CTEDSPFX.SYS;CTEDSPFX.SYS;c:\windows\system32\drivers\CTEDSPFX.sys [2008-3-20 259096]
S3 CTEDSPFX;CTEDSPFX;c:\windows\system32\drivers\CTEDSPFX.sys [2008-3-20 259096]
S3 CTEDSPIO.SYS;CTEDSPIO.SYS;c:\windows\system32\drivers\CTEDSPIO.sys [2008-3-20 134168]
S3 CTEDSPIO;CTEDSPIO;c:\windows\system32\drivers\CTEDSPIO.sys [2008-3-20 134168]
S3 CTEDSPSY.SYS;CTEDSPSY.SYS;c:\windows\system32\drivers\CTEDSPSY.sys [2008-3-20 309784]
S3 CTEDSPSY;CTEDSPSY;c:\windows\system32\drivers\CTEDSPSY.sys [2008-3-20 309784]
S3 CTERFXFX.SYS;CTERFXFX.SYS;c:\windows\system32\drivers\CTERFXFX.sys [2008-3-20 99352]
S3 CTERFXFX;CTERFXFX;c:\windows\system32\drivers\CTERFXFX.sys [2008-3-20 99352]
S3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\system32\drivers\CTEXFIFX.sys [2008-3-20 1324056]
S3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.sys [2008-3-20 1324056]
S3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\system32\drivers\CTHWIUT.sys [2008-3-20 72728]
S3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.sys [2008-3-20 72728]
S3 CTSBLFX.SYS;CTSBLFX.SYS;c:\windows\system32\drivers\CTSBLFX.sys [2008-3-20 534040]
S3 CTSBLFX;CTSBLFX;c:\windows\system32\drivers\CTSBLFX.sys [2008-3-20 534040]
S3 emuumidi;E-MU USB-MIDI Driver;c:\windows\system32\drivers\emuumidi.sys [2007-3-14 37120]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2009-9-4 36608]
S3 netr73;Belkin Wireless G Plus MIMO USB Network Adapter Driver for Vista;c:\windows\system32\drivers\netr73.sys [2006-9-28 247808]
S3 PortlUSB;PortlUSB;c:\windows\system32\drivers\H10USB.sys [2004-6-24 7552]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2010-10-17 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2010-10-17 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2010-10-17 123648]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2012\TuneUpUtilitiesDriver32.sys [2011-11-24 10064]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2006-2-28 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 Apache2.2;Apache2.2;c:\program files\apache software foundation\apache2.2\bin\httpd.exe [2012-1-28 20549]
S4 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2009-9-4 233472]
S4 gupdate1c99b6187578484;Google Update Service (gupdate1c99b6187578484);c:\program files\google\update\GoogleUpdate.exe [2009-3-2 133104]
S4 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2009-3-2 133104]
S4 TomTomHOMEService;TomTomHOMEService;c:\program files\tomtom home 2\TomTomHOMEService.exe [2011-4-22 92592]
.
=============== Created Last 30 ================
.
2012-04-20 18:15:15 711240 ----a-w- c:\windows\isRS-000.tmp
2012-04-19 14:08:28 -------- d--h--w- c:\documents and settings\all users\application data\Common Files
2012-04-17 13:22:25 -------- d-----w- c:\documents and settings\owner\application data\Foxit Software
2012-04-16 14:12:01 28992 ----a-w- c:\windows\system32\uxtuneup.dll
2012-04-06 10:19:35 -------- d-----w- c:\program files\iPod
2012-04-06 10:19:33 -------- d-----w- c:\program files\iTunes
2012-04-05 19:37:12 418464 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-03-30 10:31:14 -------- d-----w- c:\program files\ImageMagick-6.7.6-Q16
.
==================== Find3M ====================
.
2012-04-18 17:37:09 6524 ----a-w- c:\windows\P32I.BIN
2012-04-16 15:44:17 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-05 10:31:46 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2012-04-04 14:56:40 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-13 21:42:37 293992 ----a-w- c:\windows\system32\nvdrsdb1.bin
2012-03-13 21:42:37 1 ----a-w- c:\windows\system32\nvdrssel.bin
2012-03-13 21:42:34 293992 ----a-w- c:\windows\system32\nvdrsdb0.bin
2012-03-11 13:48:50 56208 ----a-w- c:\windows\system32\drivers\RapportKELL.sys
2012-03-01 11:01:32 916992 ----a-w- c:\windows\system32\wininet.dll
2012-03-01 11:01:32 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-03-01 11:01:32 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-02-29 23:58:00 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-29 23:58:00 65536 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-29 23:58:00 5918720 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-29 23:58:00 4309760 ----a-w- c:\windows\system32\nv4_disp.dll
2012-02-29 23:58:00 2522944 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-29 23:58:00 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-29 23:58:00 2291712 ----a-w- c:\windows\system32\nvapi.dll
2012-02-29 23:58:00 18624512 ----a-w- c:\windows\system32\nvoglnt.dll
2012-02-29 23:58:00 17534976 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-29 23:58:00 13417632 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2012-02-29 23:58:00 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-29 20:30:31 54272 ----a-w- c:\windows\system32\nvwddi.dll
2012-02-29 20:30:24 15494464 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-29 20:30:24 143680 ----a-w- c:\windows\system32\nvcolor.exe
2012-02-29 20:30:23 164160 ----a-w- c:\windows\system32\nvsvc32.exe
2012-02-29 20:30:23 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-29 14:10:16 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-02-29 14:10:16 148480 ----a-w- c:\windows\system32\imagehlp.dll
2012-02-29 12:17:40 385024 ----a-w- c:\windows\system32\html.iec
2012-02-27 15:32:14 141312 ----a-w- c:\windows\system32\javacpl.cpl
2012-02-27 15:32:13 637848 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-02-27 15:32:13 567696 ----a-w- c:\windows\system32\deployJava1.dll
2012-02-11 01:17:18 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-02-11 01:17:18 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-02-05 11:14:04 414 ----a-w- c:\windows\AeDebugSave.reg
2012-02-03 09:22:18 1860096 ------w- c:\windows\system32\win32k.sys
.
============= FINISH: 20:02:55.26 ===============
 
And the 2nd log:

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 08/12/2008 17:04:49
System Uptime: 20/04/2012 19:16:22 (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | P5QL-ASUS-SE
Processor: Intel Pentium III Xeon processor | LGA775 | 3010/333mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 233 GiB total, 102.884 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 466 GiB total, 248.441 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP90: 17/03/2012 09:05:34 - System Checkpoint
RP91: 18/03/2012 21:04:47 - System Checkpoint
RP92: 19/03/2012 12:53:00 - Installed E-MU PatchMix DSP
RP93: 20/03/2012 09:33:47 - Revo Uninstaller's restore point - E-muPatchMix DSP
RP94: 20/03/2012 09:34:05 - Removed E-MU PatchMix DSP
RP95: 20/03/2012 09:35:16 - Revo Uninstaller's restore point - Digital Audio System
RP96: 20/03/2012 09:35:37 - Removed Digital Audio System
RP97: 20/03/2012 09:42:58 - Installed Digital Audio System
RP98: 20/03/2012 10:17:15 - Installed Digital Audio System
RP99: 21/03/2012 12:42:42 - System Checkpoint
RP100: 22/03/2012 21:33:14 - System Checkpoint
RP101: 24/03/2012 10:47:07 - System Checkpoint
RP102: 25/03/2012 12:30:16 - Installed Windows Media Player 11
RP103: 25/03/2012 12:31:58 - Installed Windows XP MSCompPackV1.
RP104: 26/03/2012 13:05:51 - System Checkpoint
RP105: 27/03/2012 15:09:15 - System Checkpoint
RP106: 28/03/2012 16:06:04 - System Checkpoint
RP107: 29/03/2012 20:26:15 - System Checkpoint
RP108: 30/03/2012 21:49:26 - System Checkpoint
RP109: 01/04/2012 08:23:26 - System Checkpoint
RP110: 06/04/2012 08:45:46 - System Checkpoint
RP111: 06/04/2012 11:17:07 - Installed iTunes
RP112: 07/04/2012 16:42:43 - System Checkpoint
RP113: 09/04/2012 10:24:53 - System Checkpoint
RP114: 10/04/2012 11:27:37 - System Checkpoint
RP115: 11/04/2012 09:43:34 - Software Distribution Service 3.0
RP116: 12/04/2012 09:52:29 - System Checkpoint
RP117: 17/04/2012 08:50:28 - System Checkpoint
RP118: 18/04/2012 10:22:30 - System Checkpoint
RP119: 19/04/2012 11:19:10 - System Checkpoint
RP120: 20/04/2012 11:41:15 - System Checkpoint
.
==== Installed Programs ======================
.
7-Zip 4.57
Administrative Templates for Windows XP
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.2)
Adobe Shockwave Player 11.6
Adobe® Photoshop® Album Starter Edition 3.0.1
AmpliTube LE
Apache HTTP Server 2.2.22
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Assorted Styles Volume 2
Assorted Styles Volume 3
Assorted Styles Volume 4
ASUSUpdate
Audio Track Editor
AVS Audio Converter version 6.1
AVS Audio Editor version 5.2
AVS Audio Recorder version 3.9
AVS Audio Tools version 4.4
AVS Cover Editor 1.3.1.96 (AVS4YOU)
AVS Disc Creator version 3.5
AVS DVD Authoring
AVS DVD Copy 4.1.2.283
AVS DVDMenu Editor 1.2.1.19
AVS Media Player 3.1
AVS Photo Editor
AVS Screen Capture version 2.0.1
AVS System Info
AVS TV Box 1.5.1
AVS TV Recorder 2.1.2
AVS Update Manager 1.0
AVS Video Converter 6
AVS Video Editor 6
AVS Video Recorder 2.4
AVS Video ReMaker 3.1.2.102
AVS Video Tools 5.6
AVS YouTube Uploader version 2.1
AVS4YOU Software Navigator 1.4
Belkin Wireless G Plus MIMO USB Network Adapter
Bonjour
Cakewalk VST Adapter 4
Calculator Powertoy for Windows XP
Canon Easy-PhotoPrint EX
Canon MOV Decoder
Canon MOV Encoder
Canon MovieEdit Task for ZoomBrowser EX
Canon MP Drivers 6.0
Canon MP Navigator 1.0
Canon ScanGearStarter
Canon Utilities Digital Photo Professional 3.8
Canon Utilities Easy-PhotoPrint
Canon Utilities EOS Utility
Canon Utilities Original Data Security Tools
Canon Utilities PhotoStitch
Canon Utilities Picture Style Editor
Canon Utilities WFT Utility
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
CCleaner
CD-LabelPrint
Compatibility Pack for the 2007 Office system
Content Transfer
CopyReport4 4.0
Core FTP LE
Core FTP LE 2.1
CoyoteWT 1.0
Critical Update for Windows Media Player 11 (KB959772)
Digital Audio System
DreamStation DXi2
Driver Detective
DVD-Cloner V8.10 Build 1005
E-MU USB-MIDI Windows Drivers
E-MU Xboard
Easy-WebPrint
ESET NOD32 Antivirus
ForteDXi 1.6
Foxit PDF Editor
Foxit PDF IFilter
Foxit Reader 5.1
GEAR 32bit Driver Installer
GIMP 2.6.11
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
Google Updater
Guitar Chord Dictionary
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB971455)
Hotfix for Windows XP (KB976002-v5)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
Image Resizer Powertoy for Windows XP
ImageMagick 6.7.6-1 Q16 (2012-04-01)
IrfanView (remove only)
iriver plus (remove only)
iriver plus 3 (remove only)
iTunes
JAMMER Pro 6 Musicians & Grooves Volumes 1-4
JAMMER Professional 6 v6.0.3.1
Java Auto Updater
Java(TM) 6 Update 30
Java(TM) 7 Update 3
JMicron JMB36X Driver
LADSPA_plugins-win-0.4.15
Live 8.2.5
Live 8.2.8
Malwarebytes Anti-Malware version 1.61.0.1400
Maxtor Manager
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft IntelliPoint 8.2
Microsoft IntelliType Pro 7.1
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office File Validation Add-In
Microsoft Office FrontPage 2003
Microsoft Office Outlook Connector
Microsoft Office Professional Edition 2003
Microsoft Office Project Standard 2003
Microsoft Office Visio Professional 2003
Microsoft RAW Image Thumbnailer and Viewer for Windows XP Version 1.0 (Build 50)
Microsoft Silverlight
Microsoft SQL Server Compact 3.5 SP2 ENU
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MobileMe Control Panel
Mozilla Firefox 11.0 (x86 en-GB)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
MySQL Tools for 5.0
Nero Suite
Neuratron PhotoScore Lite
Nikon Message Center
Nikon View 6
NTI Shadow
NVIDIA Control Panel 296.10
NVIDIA Graphics Driver 296.10
NVIDIA Install Application
NVIDIA nView 136.18
NVIDIA nView Desktop Manager
NVIDIA Update 1.7.11
NVIDIA Update Components
NWZ-E440 WALKMAN Guide
OmniFormat
OmniPage SE 2.0
OpenOffice.org 3.3
PC Connectivity Solution
Pdf995
PdfEdit995
PG Music DirectX Plugins 2.0.0.0
Photo Story 3 for Windows
PhotoEdit995
PHOTOfunSTUDIO 6.0
Piano Chord Dictionary
PictureProject
PowerTracks Pro Audio 2011 (Build 1)
Presto! PageManager 6.12
Proteus VX
Proteus X LE
QuickTime
Ralink Wireless LAN
Rapport
RealDrums Sets 1-3
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
REALTEK GbE & FE Ethernet PCI-E NIC Driver
RealUpgrade 1.1
Revo Uninstaller 1.93
Samsung New PC Studio
SAMSUNG USB Driver for Mobile Phones
SamsungConnectivityCableDriver
SeaTools for Windows
Secunia PSI (2.0.0.4003)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Internet Explorer 7 (KB976325)
Security Update for Windows Internet Explorer 7 (KB978207)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB2675157)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 9 (KB936782)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Security Updater
Sibelius 5
Sibelius Scorch (ActiveX Only)
Sibelius Scorch (all browsers)
Sibelius Scorch (Firefox, Opera, Netscape only)
Sibelius Sounds Essentials
Sibelius Sounds Essentials Update
Signature995
SONAR LE
Spybot - Search & Destroy
Steinberg Cubase LE
SUPERAntiSpyware
swMSM
System Requirements Lab
T-RackS EQ
TomTom HOME 2.8.2.2264
TomTom HOME Visual Studio Merge Modules
TuneUp Utilities 2012
TuneUp Utilities Language Pack (en-GB)
ubCore
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 7 (KB976749)
Update for Windows Internet Explorer 7 (KB980182)
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows Internet Explorer 8 (KB2632503)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2492386)
Update for Windows XP (KB2641690)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
USB TV Device Driver
VC80CRTRedist - 8.0.50727.4053
Virtual Sound Canvas 3.2
Virtual Sound Canvas DXi
VisualSVN Server 2.5.3
VST Bridge 1.1
WebFldrs XP
Windows 7 Upgrade Advisor
Windows Backup Utility
Windows Imaging Component
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Lite 2.4.0
Windows Media Player 11
Windows Presentation Foundation
Windows Search 4.0
Windows Support Tools
Windows XP Service Pack 3
WinFast Multimedia Driver Installation
WinZip Self-Extractor
XAMPP 1.6.2
XML Paper Specification Shared Components Pack 1.0
Yahoo! Install Manager
.
==== Event Viewer Messages From Past Week ========
.
18/04/2012 09:29:40, error: DCOM [10005] - DCOM got error "%1055" attempting to start the service winmgmt with arguments "" in order to run the server: {8BC3F05E-D86B-11D0-A075-00C04FB68820}
18/04/2012 09:29:40, error: DCOM [10005] - DCOM got error "%1055" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
18/04/2012 09:29:09, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
17/04/2012 15:45:54, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service gusvc with arguments "" in order to run the server: {89DAE4CD-9F17-4980-902A-99BA84A8F5C8}
17/04/2012 10:47:16, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service gupdatem with arguments "/comsvc" in order to run the server: {E225E692-4B47-4777-9BED-4FD7FE257F0E}
16/04/2012 14:56:51, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the NVSvc service.
.
==== End Of File ===========================
 
Looking back in my Windows Update History, I installed XP SP3 (KB 936929) on 10th February 2012 from the Windows Update site. My first attempt failed - Error Code: 0x8024200D - but my 2nd attempt was successful.
 
I found this "solution" on another forum. It makes no sense to me and might not really be a solution as I can see no action to change anything. Anyway, I thought that it might mean more to you.
________________________________________________
Using Regedit, navigate to the following registry value
HKLM\System\CurrentControlSet\
Services\WSearch
In the right panel, double-click ImagePath.
The Edit String dialog box is displayed. Leave this dialog box open. If Svchost.exe is displayed in the Value data box, then under the service name, navigate to the Parameters folder and then double-click ServiceDll.
Click Start, and then click My Computer.
Using the information displayed in the Value data box of the Edit String dialog box, navigate to the program.
Right-click the program name, and then click Properties.
The Properties dialog box for the program is displayed.
To determine who the vendor is for this service, refer to the Version tab.
You can also find the path to the executable file in this tool.
___________________________________________________

BTW I looked in the Value Data box and Svchost was not there. All I had was "%systemroot%\system32\SearchIndexer.exe /Embedding"
 
My apology for the delay. I had urgent matters to attend to and for once, put my problems ahead of those on the board.

I have no idea what you were trying to accomplish with the registry edit. A vendor can be found in the device Manager. The Search Indexer can be found simply by using Windows explorer to access the Local Drive. Doing a right click on the Local Drive> Properties> the Search indexer can be unchecked-or check there.

Please tell me what system problems remain now and we'll finish up. The thread has been watched. I got notice of your reply.
 
The problem is still as it was.

My PC will suddenly re-boot, even if I am away from the m/c. The Error log appears to show that a DCOM error occurs at the point of re-boot, although it doesn't happen at every DCOM error.

Regarding the registry edit post - I was researching what solutions others have proposed for the problem.

Update

PC crashed again last night. Looked at Error Log and there were 4 DCOM errors - all relating to WSearch. I recall seeing somewhere on the system that the 3rd or 4th DCOM error enforces a re-boot, but I can't recall where.
 
I've sorted the problem.:)

I used regedit to find what the executable file was associated with WSearch. It was the indexing service for Windows Search 4.0. Evidently this has caused a lot of conflicts and was introduced as a KB update by Microsoft. I tried to disable in "Services" but still had DCOM errors, so I uninstalled Windows Search 4.0 and I've had no more DCOM errors all day.:cool: I can still use the Search facility from the Start menu.

I'll use the same approach to determine any other DCOM errors if they arise.
 
Please let me know if this recurs. The DCOM errors you were getting weren't just for WSearch. I prepared instructions on using a Clean Boot to try and troubleshoot the cause. I'll save it and close the thread. If you need it reopened for those instructions, please start a Conversation.

Be careful with the Regedits. They are not without risks and the registry should be backed up before making any change. You should note that Tune Up Utilities has a registry cleaner within the program.
=====================================
Removing all of the tools we used and the files and folders they created
  • Uninstall ComboFix and all Backups of the files it deleted
  • Click START> then RUN
  • Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
    CF_Uninstall-1.jpg
  • Download OTCleanIt by OldTimer and save it to your Desktop.
  • Double click OTCleanIt.exe.
  • Click the CleanUp! button.
  • Select Yes when the "Begin cleanup Process?" prompt appears.
  • If you are prompted to Reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes.
-----
Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.

Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.
------------------------------------------
  • You should now set a new Restore Point and remove the old restore points to prevent infection from any previous Restore Points.
  • Go to Start > All Programs > Accessories > System Tools
  • Click "System Restore".
  • Choose "Create a Restore Point" on the first screen then click "Next".
  • Give the Restore Point a name> click "Create".
  • Go back and follow the path to > System Tools.
  • Choose Disc Cleanup
  • Click "OK" to select the partition or drive you want.
  • Click the "More Options" Tab.
  • Click "Clean Up" in the System Restore section to remove all previous Restore Points except the newly created one.
Empty the Recycle Bin
 
Status
Not open for further replies.

Similar threads

midian182
HP Smart app mysteriously appears on non-HP Windows PCs
Replies
1
Views
304
Mark Fuller
M
I
  • Locked
Inactive Virus or rootkit on Windows and Linux
Replies
9
Views
2K
Broni
Broni
BBrown2022
  • Locked
Inactive Windows .DLL Files & Drivers overwritten
Replies
8
Views
2K
Broni
Broni

Latest posts

Back